Hola. Mi problema es que desde hace un tiempo algunos programas se cierran solos cuando quieren. He reinstalado varias veces y sigue el mismo problema. Utilizo Win 7 Espero que puedan ayudarme por favor. Muchas gracias
Buenas @Kovak
Lo primero sera revisar tu máquina, sigue estos pasos, en el orden indicado y leyendo todo lo explicado. 
Desactiva temporalmente el Antivirus 
Cómo deshabilitar temporalmente su Antivirus, mientras estemos realizando TODOS los pasos.
Vamos a descargar en TU ESCRITORIO(y NO en otro lugar 
) todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía) :
-
Malwarebytes’ Anti-Malware + Manual.
revisa en detalle el manual, para que sepas usarlo y configurarlo correctamente. -
Farbar Recovery Scan Tool. seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo.
Como saber si Mi Windows es de 32 o 64 Bits ?.
Ejecutas las herramientas de una en una y en el orden indicado :
CCleaner.-
-
Instalas y Ejecutas CCleaner siguiendo los pasos indicados en el manual.
-
Úsalo primero en su opción de Limpiador para borrar cookies, temporales de Internet y todos los archivos que te muestre como obsoletos.
-
Después usa su opción de Registro para limpiar todo el registro de Windows(haciendo copia de seguridad).
Malwarebytes.-
-
Instalas y Ejecutas MBAM siguiendo los pasos indicados en el manual.
-
Realiza un Análisis Personalizado.
-
Seleccionando TODOS a Cuarentena para enviarlo a la cuarentena y Reinicias el sistema.
-
En el apartado del programa
Historial de detecciones 
encontrarás el informe de MBAM, que debes copiar y pegar en tu próxima respuesta, para poder analizarlo.
AdwCleaner.-
-
Ejecuta Adwcleaner.exe.
-
Pulsamos en el botón Analizar ahora, y espera a que se realice el proceso, inmediatamente pulsa siempre sobre el botón Iniciar Reparación.
-
Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
-
El log/informe lo encontramos en la pestaña “Informes”, volviendo a abrir el programa si fuese necesario, para poder copiarlo y pegarlo en tu próxima respuesta.
-
El informe también se puede encontrar en C:\AdwCleaner\Logs\AdwCleaner[C00].txt
Junkware Removal Tool.-
-
Ejecuta JRT.exe.
-
Y pulsar cualquier tecla para continuar, esperar pacientemente a que termine el proceso.
-
Si en algún momento te pide Reiniciar hazlo.
-
Al finalizar, un registro/informe (JRT.txt) se guardara en el escritorio y se abrirá automáticamente.
-
Copia y pega el contenido de JRT.txt en tu próxima respuesta.
Farbar Recovery Scan Tool.-
-
Ejecuta FRST.exe.
-
En el mensaje de la ventana del Disclaimer/Responsabilidad, pulsamos Sí/Yes
-
En la ventana principal pulsamos en el botón Analizar/Scan y esperamos a que concluya el proceso.
-
Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.
Poner los informes en tu próxima respuesta de :
- Malwarebytes, AdwCleaner, JRT, FRST + Addition.txt, y en ese orden.
Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(más de 64.000 caracteres aprox.).
Y nos cuentas como funciona tu equipo en relación al problema planteado.
Saludos Javier.
1 me gusta
Muchas gracias por la rápida atención… Pondré los reportes separados por mensajes para que no se meclen y por orden como me pides
.malwarebytes
Malwarebytes
www.malwarebytes.com
-Detalles del registro-
Fecha del análisis: 6/5/20
Hora del análisis: 1:52
Archivo de registro: 6d1cabd8-8f2b-11ea-b1a6-d050991fdade.json
-Información del software-
Versión: 4.1.0.56
Versión de los componentes: 1.0.889
Versión del paquete de actualización: 1.0.23216
Licencia: Gratis
-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: darko-PC\darko
-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 235052
Amenazas detectadas: 5
Amenazas en cuarentena: 4
Tiempo transcurrido: 3 min, 4 seg
-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar
-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)
Módulo: 0
(No hay elementos maliciosos detectados)
Clave del registro: 1
PUP.Optional.Conduit, HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}, En cuarentena, 194, 236865, 1.0.23216, , ame,
Valor del registro: 2
PUP.Optional.Conduit, HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|URL, En cuarentena, 194, 236865, 1.0.23216, , ame,
PUP.Optional.Conduit, HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}|TOPRESULTURL, En cuarentena, 194, 236865, 1.0.23216, , ame,
Datos del registro: 1
PUP.Optional.Conduit, HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\MICROSOFT\INTERNET EXPLORER\MAIN|START PAGE, Sustituido, 194, 293058, 1.0.23216, , ame,
Secuencia de datos: 0
(No hay elementos maliciosos detectados)
Carpeta: 0
(No hay elementos maliciosos detectados)
Archivo: 1
HackTool.FilePatch, C:\PROGRAM FILES (X86)\VIDEOREDOTVSUITE6\VIDEOREDO.TVSUITE.6.PATCH-MPT.EXE, Sin acciones por parte del usuario, 7531, 281135, 1.0.23216, , ame,
Sector físico: 0
(No hay elementos maliciosos detectados)
WMI: 0
(No hay elementos maliciosos detectados)
(end)
AdwCleaner
# -------------------------------
# Malwarebytes AdwCleaner 8.0.4.0
# -------------------------------
# Build: 04-03-2020
# Database: 2020-04-03.1 (Local)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-06-2020
# Duration: 00:00:10
# OS: Windows 7 Ultimate
# Cleaned: 1
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1698 octets] - [13/01/2020 09:51:15]
AdwCleaner[C00].txt - [1792 octets] - [13/01/2020 09:51:43]
AdwCleaner[S01].txt - [1451 octets] - [23/01/2020 19:15:38]
AdwCleaner[C01].txt - [1639 octets] - [23/01/2020 19:15:46]
AdwCleaner[S02].txt - [1899 octets] - [27/01/2020 07:50:24]
AdwCleaner[C02].txt - [2031 octets] - [27/01/2020 07:50:38]
AdwCleaner[S03].txt - [1868 octets] - [02/04/2020 07:34:28]
AdwCleaner[C03].txt - [2038 octets] - [02/04/2020 07:34:56]
AdwCleaner[S04].txt - [1817 octets] - [11/04/2020 21:39:09]
AdwCleaner[S05].txt - [2156 octets] - [21/04/2020 23:36:08]
AdwCleaner[C05].txt - [2250 octets] - [21/04/2020 23:36:25]
AdwCleaner[S06].txt - [2080 octets] - [28/04/2020 14:51:35]
AdwCleaner[S07].txt - [2234 octets] - [06/05/2020 01:57:21]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C07].txt ##########
Junkware Removal Tool
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Ultimate x64
Ran by darko (Administrator) on 06/05/2020 at 2:02:52,97
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 23
Successfully deleted: C:\ProgramData\productdata (Folder)
Successfully deleted: C:\ProgramData\thunder network (Folder)
Successfully deleted: C:\Users\darko\AppData\Roaming\3564 (Folder)
Successfully deleted: C:\Users\darko\AppData\Roaming\4190 (Folder)
Successfully deleted: C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\8jw7qeey.default\extensions\staged (Folder)
Successfully deleted: C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\extensions\staged (Folder)
Successfully deleted: C:\Users\Public\thunder network (Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KUDTUPET (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NLTRDKNT (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V8WAW3MX (Temporary Internet Files Folder)
Successfully deleted: C:\Users\darko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VWV1Q1L0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KUDTUPET (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NLTRDKNT (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V8WAW3MX (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VWV1Q1L0 (Temporary Internet Files Folder)
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 06/05/2020 at 2:06:20,31
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST
Resultado del análisis realizado por Farbar Recovery Scan Tool (FRST) (x64) Versión: 03-05-2020
Ejecutado por darko (administrador) sobre DARKO-PC (06-05-2020 02:08:07)
Ejecutado desde C:\Users\darko\Desktop
Perfiles cargados: darko (Perfiles disponibles: darko)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Idioma: Español (España, internacional)
Internet Explorer Versión 11 (Navegador predeterminado: FF)
Modo de Inicio: Normal
Tutorial para Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Procesos (Lista blanca) =================
(Si una entrada es incluida en el fixlist, el proceso será cerrado. El archivo no será movido.)
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVerMedia TECHNOLOGIES, INC. -> AVerMedia TECHNOLOGIES, Inc.) C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Corporation) [Archivo no firmado] C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
==================== Registro (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, el elemento del registro será restaurado a su valor predeterminado o será eliminado. El archivo no será movido.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108216 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-11] (Intel Corporation - Software and Firmware Products -> Intel Corporation)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restricción <==== ATENCIÓN
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Run: [Opera Browser Assistant] => C:\Users\darko\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\MountPoints2: {77132f40-1ad3-11ea-ac41-d050991fdade} - E:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
BootExecute: autocheck autochk *
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
==================== Tareas programadas (Lista blanca) ============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
Task: {0AC955C0-EEC0-4411-9214-450BFB97181F} - System32\Tasks\{C1A6CCE2-F24D-401D-B552-99F7ADF82091} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {19F906F5-C217-4048-B788-041F49C410DD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1B83D724-93DB-4F7A-91B7-0AEF734C1F09} - System32\Tasks\Opera scheduled assistant Autoupdate 1582736996 => C:\Users\darko\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {1BB28BBE-709C-4EA5-98BF-C8A3F9CCEF85} - System32\Tasks\{5018B17E-65A7-4258-97C3-084C98F9360D} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {21C4395C-16C8-4410-9D57-D29D59E8B359} - System32\Tasks\{637C5AF2-A48B-49B7-8664-30C8902480B4} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {23FE5A64-CC17-4A1A-977C-1F07C9D7637D} - System32\Tasks\{3FA020EA-FD00-48D6-8566-790A8AAF0DF3} => C:\Windows\system32\pcalua.exe -a "C:\Users\darko\Downloads\Nueva carpeta\Nueva carpeta\CBGHST\cgsetup_en.exe" -d "C:\Users\darko\Downloads\Nueva carpeta\Nueva carpeta\CBGHST"
Task: {266A7B80-50DE-4339-BF7C-286AC6212CFB} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {279A20A2-8433-4A72-A79B-B77855B9C833} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {28D412AA-FDC4-463E-950F-1D513A91E4CE} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-15] (Adobe Inc. -> Adobe)
Task: {2C6ECB07-A9A4-4C98-A9B2-8607359E6D37} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-04-05] ( ) [Archivo no firmado]
Task: {2EA87834-4C58-4BD9-A2A3-3DB40E605E5B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {376FE149-D176-4C09-9981-7A04237DAAAB} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3325032 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
Task: {3D150EF3-8A9B-4BDE-9444-20EE54118568} - System32\Tasks\{BC024EC4-5258-4794-8DC2-F83952B9AA10} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {3E52E1FB-EC67-44AD-B6DB-BD862968D0E3} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {4090E00A-A5C0-4742-830D-ECD13C22EB98} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {40B25001-CA68-42F2-85CE-3B2A3F7EC26C} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat
Task: {434FF47D-C86A-4D53-9F22-1EBB8FD35284} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-15] (Adobe Inc. -> Adobe)
Task: {497D4E75-840F-419D-A5AA-95270FE638F2} - System32\Tasks\{92F16107-CD45-412B-B8D2-2F0E8F964A05} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {4D345DEF-22AB-4E44-82A4-66DB72C5478C} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {5BEB5BF7-7C39-4F77-886D-5FAA77379D8E} - System32\Tasks\{182B3137-A582-47C4-B92C-B406D4030779} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {5F8BB9AD-2BE0-4449-8C6F-A9D9A4CC69D2} - System32\Tasks\{BD019C79-43EC-405F-B80A-C00D38F45669} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {6784296B-30FB-44D8-8B5A-D477ACA21036} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {67C3FA44-02D5-4637-805F-84F3ADA65BAC} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {76F37134-C29B-4A6B-9317-FC9F8C98E36D} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7D6B288F-85F8-4D31-9087-03BA2B7B1CE8} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233824 2012-06-14] (Intel® Services Manager -> Intel Corporation)
Task: {84FFB4AD-7B30-4D80-B9F2-764ADDECA44C} - System32\Tasks\{3D95CB0B-E8E1-486C-8371-90745C2D4246} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {85C99FA9-404B-4076-B0B0-AA82883D4346} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-16] (Google Inc -> Google Inc.)
Task: {8CE0D52A-0F62-45D6-BFA9-FFAF2767B432} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {96B2BACF-AF5E-40EC-AF60-C33C5FE44D7E} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
Task: {B327F443-E4C0-4445-AAC8-31E62EE1CE22} - System32\Tasks\{526116DA-7841-46D5-8AC2-178CD6AD2EA0} => C:\Program Files (x86)\AVerMedia\AVerMedia Stream Engine\AVerMedia Stream Engine.exe
Task: {B4F3880F-430B-40FC-B65F-75ACA5061A6E} - System32\Tasks\{DDF359B2-A910-4575-B16B-79236EA09C02} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {C1581950-E6B3-4845-B756-CD82DCD82334} - System32\Tasks\{D7B2AA58-A84E-4248-873A-C29775A87FD0} => C:\Windows\system32\pcalua.exe -a C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(3).exe -d C:\Users\darko\Downloads
Task: {C17C5C39-2308-4BAB-B7A1-5FA36098DBC1} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
Task: {CC3F9B3F-BF93-4556-B9BD-09A428141FBC} - System32\Tasks\{824804C8-DC53-4F78-93B7-4BBC70846505} => C:\Windows\system32\pcalua.exe -a "C:\Users\Public\Documents\AVerMedia Assist Central\GL310_RECentral_1.3.0.117_Drv_3.2801.x.40\GL310_RECentral_1.3.0.117.2019032001_Drv_3.2801.x.40.exe" -d "C:\Users\Public\Documents\AVerMedia Assist Central\GL310_RECentral_1.3.0.117_Drv_3.2801.x.40"
Task: {CCD716E5-D74A-44F2-84FC-2D7378306612} - System32\Tasks\Opera scheduled Autoupdate 1574684450 => C:\Users\darko\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {CCEAC7E3-C451-455E-9080-AEFCFCC5B1FA} - System32\Tasks\{43DC5810-B851-4A1B-A91C-AA20346F8336} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {D2F9EEE4-0379-42D1-B9F9-31F747C06ECF} - System32\Tasks\{F29356F6-35C4-4206-85B4-74537A1F9555} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {DD74E078-F572-418A-ACFF-1DA2C7B3F9C0} - System32\Tasks\{804D460C-6624-4E76-BA12-1DE1CF9F2329} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {E22CCF2E-4232-489B-852D-DAD03B6CB22F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-11-16] (Google Inc -> Google Inc.)
Task: {EE034B39-2612-410C-B0D8-EB35A2C9FE98} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18227896 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F18C4E7B-5DF2-4D5A-BC1F-1324CBEF9F90} - System32\Tasks\{490C2C34-48D1-405A-80D6-2429DC03A0AF} => C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe [9316160 2015-08-23] (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
Task: {FBB05270-0C9A-48B2-811B-0DB5AE1935A8} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4249422975-1014931290-1555897128-1000 => {CA22F5B1-E06F-4A2B-94FC-21E87FE53781} C:\Windows\System32\gameux.dll [2746368 2019-01-22] (Microsoft Windows -> Microsoft Corporation)
(Si una entrada es incluida en el fixlist, el archivo de tarea (.job) será movido. El archivo que está siendo ejecutado por la tarea no será movido.)
==================== Internet (Lista blanca) ====================
(Si un elemento es incluido en el fixlist, y éste pertenece al registro, será eliminado o restaurado a su valor predeterminado.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{FCE1F985-7315-4951-AC7D-42F0DB7A8BF0}: [NameServer] 74.82.42.42,192.168.1.1
Tcpip\..\Interfaces\{FCE1F985-7315-4951-AC7D-42F0DB7A8BF0}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_231\bin\ssv.dll [2019-11-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_231\bin\jp2ssv.dll [2019-11-16] (Oracle America, Inc. -> Oracle Corporation)
Handler: WSISAllmytubechrome - Sin valor CLSID
FireFox:
========
FF DefaultProfile: 8jw7qeey.default
FF ProfilePath: C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\8jw7qeey.default [2020-05-04]
FF NewTab: Mozilla\Firefox\Profiles\8jw7qeey.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=JD180501&iDate=2020-05-03 10:54:25&bName=&bitmask=0300
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\8jw7qeey.default\Extensions\[email protected] [2019-11-16]
FF Extension: (Avast Online Security) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\8jw7qeey.default\Extensions\[email protected] [2019-11-16]
FF ProfilePath: C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 [2020-05-06]
FF Homepage: Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 -> google.es
FF NewTab: Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 -> hxxps://defaultsearch.co/homepage?hp=1&pId=JD180501&iDate=2020-05-03 10:54:25&bName=&bitmask=0300
FF Session Restore: Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 -> está habilitado.
FF Notifications: Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 -> hxxps://www1.sherwoodsutton.pro; hxxps://www1a.debrahinton.pro; hxxps://www1a.michellehardin.pro; hxxps://forospyware.com
FF Extension: (AdBlocker Ultimate) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\Extensions\[email protected] [2020-01-11]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\Extensions\[email protected] [2020-01-17] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\Extensions\[email protected] [2020-04-30]
FF Extension: (uBlock Origin) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\Extensions\[email protected] [2020-02-06]
FF Extension: (Avast Online Security) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\Extensions\[email protected] [2020-04-12]
FF Extension: (TuneYou Radio App) - C:\Users\darko\AppData\Roaming\Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361\Extensions\{fcce0b11-092d-4c58-a143-0348bbaebebd}.xpi [2020-04-28]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_363.dll [2020-04-15] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\dtplugin\npDeployJava1.dll [2019-11-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.231.2 -> C:\Program Files\Java\jre1.8.0_231\bin\plugin2\npjp2.dll [2019-11-16] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_363.dll [2020-04-15] (Adobe Inc. -> )
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.0.72 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-03-12] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation PE Sign v2014 -> NVIDIA Corporation) [Archivo no firmado]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
Chrome:
=======
CHR Profile: C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default [2020-05-06]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Presentaciones) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-11-16]
CHR Extension: (Documentos) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-11-16]
CHR Extension: (Google Drive) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-11-16]
CHR Extension: (YouTube) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-11-16]
CHR Extension: (Avast SafePrice | Comparaciones, ofertas y cupones) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-03-31]
CHR Extension: (Hojas de cálculo) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-11-16]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-23]
CHR Extension: (Avast Online Security) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2020-03-31]
CHR Extension: (Player para ver Movistar+) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\kenfcfndncbbggmafjjeihkdclggbojn [2020-01-21]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-11-16]
CHR Extension: (Gmail) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-11-16]
CHR Extension: (Chrome Media Router) - C:\Users\darko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-23]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
==================== Servicios (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5504928 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [345384 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R2 AVerRECentral; C:\Program Files (x86)\Common Files\AVerMedia\Service\AVerRECentral.exe [1930848 2018-03-31] (AVerMedia TECHNOLOGIES, INC. -> AVerMedia TECHNOLOGIES, Inc.)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [731648 2013-02-13] (Intel(R) Corporation) [Archivo no firmado]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-03-12] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-03-12] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-04-30] (Malwarebytes Inc -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2019-01-22] (Microsoft Windows -> Microsoft Corporation)
S3 WsDrvInst; C:\Program Files (x86)\Wondershare\Video Converter Ultimate\Transfer\DriverInstall.exe [105184 2017-12-29] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 wuauserv; C:\Windows\system32\wuaueng2.dll [2651648 2019-01-23] (Microsoft Corporation) [Archivo no firmado]
S2 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
===================== Controladores (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37856 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [206120 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234776 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178968 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60696 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42984 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175920 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [500960 2020-04-20] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-11] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109480 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [85056 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851808 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [459408 2020-04-16] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235696 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [317280 2020-04-11] (Avast Software s.r.o. -> AVAST Software)
R3 AVer330USB; C:\Windows\System32\DRIVERS\AVer330USB.sys [1549952 2019-03-20] (AVerMedia TECHNOLOGIES, Inc. -> AVerMedia TECHNOLOGIES, Inc.)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2019-11-14] (Glarysoft LTD -> Glarysoft Ltd)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2019-12-27] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28656 2013-04-30] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R1 npcap; C:\Windows\System32\DRIVERS\npcap.sys [69432 2019-09-04] (Insecure.Com LLC -> Insecure.Com LLC.)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2018-12-07] (Riverbed Technology, Inc. -> Riverbed Technology, Inc.)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [69840 2019-04-17] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [75600 2019-08-23] (NVIDIA Corporation -> NVIDIA Corporation)
S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [254520 2017-03-15] (Microsoft Windows Hardware Compatibility Publisher -> QUALCOMM Incorporated)
S3 tap0901; C:\Windows\System32\DRIVERS\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
U4 npcap_wifi; no ImagePath
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
==================== NetSvcs (Lista blanca) ===================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
==================== Un mes (creado) ===================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-05-06 02:08 - 2020-05-06 02:09 - 000029786 _____ C:\Users\darko\Desktop\FRST.txt
2020-05-06 02:06 - 2020-05-06 02:06 - 000003772 _____ C:\Users\darko\Desktop\JRT.txt
2020-05-06 02:02 - 2020-05-06 02:07 - 000000000 ____D C:\Users\darko\Desktop\reportes
2020-05-06 01:50 - 2020-05-06 01:50 - 000003272 _____ C:\Users\darko\Documents\cc_20200506_015025.reg
2020-05-06 01:46 - 2020-03-19 13:07 - 022245560 _____ (Piriform Software Ltd) C:\Users\darko\Desktop\CCleaner64.exe
2020-05-06 01:42 - 2020-05-06 01:42 - 001790024 _____ (Malwarebytes) C:\Users\darko\Desktop\JRT.exe
2020-05-06 01:39 - 2020-05-06 02:08 - 000000000 ____D C:\FRST
2020-05-06 01:38 - 2020-05-06 01:38 - 002283520 _____ (Farbar) C:\Users\darko\Desktop\FRST64.exe
2020-05-06 01:35 - 2020-05-06 01:36 - 000000000 ____D C:\Users\darko\Desktop\text
2020-05-06 01:32 - 2020-05-06 01:33 - 022267336 _____ (Piriform Software Ltd) C:\Users\darko\Downloads\ccsetup565.exe
2020-05-05 18:47 - 2020-05-05 18:47 - 000195395 _____ C:\Users\darko\Downloads\g5RaiiV7
2020-05-05 16:09 - 2020-05-05 16:23 - 830860665 _____ C:\Users\darko\Downloads\Av3P3scaBD.m1080p.yamil.mkv
2020-05-05 15:59 - 2020-05-05 16:12 - 4267259323 _____ C:\Users\darko\Downloads\Und3rw4ter.m1080p.yamil.mkv
2020-05-05 14:54 - 2020-05-05 14:54 - 000021269 _____ C:\Users\darko\Downloads\Making.Fun.The.Story.of.Funko.2018.1080p.WEBRip.x264-RARBG-[rarbg.to](2).torrent
2020-05-05 14:53 - 2020-05-05 14:53 - 000099470 _____ C:\Users\darko\Downloads\Making.Fun.The.Story.of.Funko.2018.1080p.NF.WEBRip.DDP2.0.x264-SiGMA-[rarbg.to](1).torrent
2020-05-05 14:53 - 2020-05-05 14:53 - 000021269 _____ C:\Users\darko\Downloads\Making.Fun.The.Story.of.Funko.2018.1080p.WEBRip.x264-RARBG-[rarbg.to](1).torrent
2020-05-05 14:52 - 2020-05-05 14:52 - 000021269 _____ C:\Users\darko\Downloads\Making.Fun.The.Story.of.Funko.2018.1080p.WEBRip.x264-RARBG-[rarbg.to].torrent
2020-05-05 14:51 - 2020-05-05 14:52 - 000099470 _____ C:\Users\darko\Downloads\Making.Fun.The.Story.of.Funko.2018.1080p.NF.WEBRip.DDP2.0.x264-SiGMA-[rarbg.to].torrent
2020-05-05 05:25 - 2020-05-05 05:25 - 055259328 _____ (FreeGrabApp Ltd ) C:\Users\darko\Downloads\FreeAmazonPrimeDownload(4).exe
2020-05-05 05:05 - 2020-05-05 05:05 - 054459008 _____ (FreeGrabApp Ltd ) C:\Users\darko\Downloads\FreeAmazonPrimeDownload(3).exe
2020-05-05 01:05 - 2020-05-06 01:25 - 000000000 ____D C:\Users\darko\AppData\Roaming\VideoReDo-TVSuite6
2020-05-05 01:05 - 2020-05-05 01:08 - 000000000 ____D C:\Program Files (x86)\VideoReDoTVSuite6
2020-05-05 01:05 - 2020-05-05 01:05 - 000001084 _____ C:\Users\Public\Desktop\VideoReDo TVSuite V6.lnk
2020-05-05 01:05 - 2020-05-05 01:05 - 000001084 _____ C:\ProgramData\Desktop\VideoReDo TVSuite V6.lnk
2020-05-05 01:05 - 2020-05-05 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoReDo
2020-05-05 01:02 - 2020-05-05 01:02 - 000000806 _____ C:\Users\darko\Downloads\VideoReDo TVSuite v6.60.10.816a [2020, Ml Rus] [rutracker-5863427].torrent
2020-05-04 14:16 - 2020-05-04 14:16 - 000222834 _____ C:\Users\darko\Downloads\MCEt2Scs
2020-05-04 14:14 - 2020-05-04 14:14 - 000202790 _____ C:\Users\darko\Downloads\Ti+goDAx
2020-05-04 06:43 - 2020-05-04 06:44 - 000000000 ____D C:\Users\darko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Python 3.8
2020-05-04 06:42 - 2020-05-04 06:42 - 000000000 ____D C:\Users\darko\AppData\Local\Package Cache
2020-05-04 06:40 - 2020-05-04 06:40 - 026481424 _____ (Python Software Foundation) C:\Users\darko\Downloads\python-3.8.2.exe
2020-05-04 06:28 - 2020-01-26 19:00 - 000000000 ____D C:\Users\darko\Downloads\ffmpeg-4.2.2-win64-static
2020-05-04 06:27 - 2020-05-04 06:27 - 069301745 _____ C:\Users\darko\Downloads\ffmpeg-4.2.2-win64-static.zip
2020-05-04 06:23 - 2020-05-04 06:30 - 000000000 ____D C:\Users\darko\AppData\Local\youtube_dl_gui
2020-05-04 06:22 - 2020-05-04 06:22 - 000232394 _____ C:\Users\darko\Downloads\youtube-dl-gui-2.22.zip
2020-05-04 06:22 - 2020-03-30 15:58 - 002577920 _____ C:\Users\darko\Downloads\youtube-dl-gui.exe
2020-05-04 06:22 - 2020-03-30 15:57 - 000000000 ____D C:\Users\darko\Downloads\lang
2020-05-04 03:08 - 2020-05-04 03:10 - 000000000 ____D C:\Users\darko\Downloads\x69 mini
2020-05-04 03:00 - 2020-05-04 03:07 - 817219185 _____ C:\Users\darko\Downloads\x96_mini_S905W_Android_9_AndroidPC.zip
2020-05-04 01:43 - 2020-05-04 01:43 - 000006101 _____ C:\Users\darko\Downloads\969b9246-ea36-48c1-8f6d-6ff89ef1db1c.mpd
2020-05-04 01:43 - 2020-05-04 01:43 - 000006101 _____ C:\Users\darko\Downloads\969b9246-ea36-48c1-8f6d-6ff89ef1db1c (1).mpd
2020-05-04 00:28 - 2020-05-04 00:29 - 045366232 _____ (AppWork GmbH) C:\Users\darko\Downloads\JDownloaderSetup(1).exe
2020-05-04 00:06 - 2020-05-04 00:11 - 524288000 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.09.escap.H.80.d22.part1.rev
2020-05-04 00:05 - 2020-05-04 00:09 - 524288075 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.08.terrafor.H.80.d22.part1.rev
2020-05-04 00:04 - 2020-05-04 00:09 - 524288000 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.07.desper.H.80.d22.part1.rev
2020-05-04 00:03 - 2020-05-04 00:07 - 524288000 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.06.supvive.H.80.d22.part1.rev
2020-05-04 00:01 - 2020-05-04 00:06 - 524288075 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.05.alielig.H.80.REP.d22.part1.rev
2020-05-04 00:00 - 2020-05-04 00:10 - 524288000 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.T04.gene.H.80.d22.part1.rev
2020-05-03 23:59 - 2020-05-04 00:02 - 524288000 _____ C:\Users\darko\Downloads\Nuestr.plan.smith.T03.escud.H.80.d22.part1.rev
2020-05-03 17:28 - 2020-05-03 22:15 - 707681360 _____ C:\Users\darko\Documents\vlc-record-2020-05-03-17h28m03s-http___192.168.1.14_9890_live-.ts
2020-05-03 11:45 - 2020-05-03 11:45 - 002623168 _____ C:\Users\darko\Downloads\05-169.ts
2020-05-03 11:44 - 2020-05-03 11:44 - 000240558 _____ C:\Users\darko\Downloads\TV Online - Movistar+.html
2020-05-03 11:44 - 2020-05-03 11:44 - 000000000 ____D C:\Users\darko\Downloads\TV Online - Movistar+_files
2020-05-03 11:43 - 2020-05-03 11:43 - 003756451 _____ C:\Users\darko\Downloads\proba movistar.mp4
2020-05-03 11:40 - 2020-05-03 11:40 - 002822448 _____ C:\Users\darko\Downloads\05-148.ts
2020-05-03 06:18 - 2020-05-03 09:04 - 2948359872 _____ C:\Users\darko\Documents\vlc-record-2020-05-03-06h18m05s-http___192.168.1.14_9890_live-.ts
2020-05-01 06:19 - 2020-05-01 06:19 - 000009284 _____ C:\Users\darko\Documents\cc_20200501_061922.reg
2020-05-01 06:19 - 2020-05-01 06:19 - 000001976 _____ C:\Users\darko\Documents\cc_20200501_061932.reg
2020-05-01 04:54 - 2020-05-01 04:55 - 129059840 _____ C:\Users\darko\Documents\disney 1_2.0.ac3
2020-05-01 03:37 - 2020-05-01 03:37 - 000042650 _____ C:\Users\darko\Downloads\The.Imagineering.Story.S01E01.1080p.WEB.H264-PETRiFiED[rartv]-[rarbg.to](1).torrent
2020-05-01 03:24 - 2020-05-01 03:24 - 000059275 _____ C:\Users\darko\Downloads\The.Imagineering.Story.S01.1080p.DSNP.WEBRip.DDP5.1.x264-PETRiFiED[rartv]-[rarbg.to](2).torrent
2020-05-01 03:23 - 2020-05-01 03:23 - 000059275 _____ C:\Users\darko\Downloads\The.Imagineering.Story.S01.1080p.DSNP.WEBRip.DDP5.1.x264-PETRiFiED[rartv]-[rarbg.to](1).torrent
2020-05-01 03:22 - 2020-05-01 03:22 - 000042650 _____ C:\Users\darko\Downloads\The.Imagineering.Story.S01E01.1080p.WEB.H264-PETRiFiED[rartv]-[rarbg.to].torrent
2020-05-01 03:21 - 2020-05-01 03:21 - 000059275 _____ C:\Users\darko\Downloads\The.Imagineering.Story.S01.1080p.DSNP.WEBRip.DDP5.1.x264-PETRiFiED[rartv]-[rarbg.to].torrent
2020-05-01 03:17 - 2020-05-01 03:18 - 117138432 _____ C:\Users\darko\Documents\disney 2.ac3
2020-04-30 20:43 - 2020-04-30 20:51 - 524288000 _____ C:\Users\darko\Downloads\bombell.historhed.lama.H.80.d22.part5.rar
2020-04-30 20:43 - 2020-04-30 20:49 - 524288000 _____ C:\Users\darko\Downloads\bombell.historhed.lama.H.80.d22.part2.rar
2020-04-30 19:15 - 2020-04-30 19:15 - 000001960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-04-29 19:05 - 2020-05-06 00:58 - 000004288 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582736996
2020-04-29 18:22 - 2020-05-06 01:35 - 000000000 ____D C:\Users\darko\AppData\Roaming\DVDFab10
2020-04-29 18:21 - 2020-04-29 18:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDFab 10
2020-04-29 18:21 - 2020-04-29 18:21 - 000000000 ____D C:\Program Files\DVDFab 10
2020-04-29 18:21 - 2018-10-13 19:51 - 000009301 _____ C:\Users\darko\AppData\Roaming\fab_config.xml
2020-04-29 18:14 - 2020-04-29 18:14 - 000000000 ____D C:\Users\darko\AppData\Roaming\27683
2020-04-29 15:10 - 2020-04-29 18:21 - 000000000 ____D C:\Users\darko\AppData\Roaming\SceneData
2020-04-29 15:10 - 2020-04-29 18:21 - 000000000 ____D C:\Users\darko\AppData\Roaming\regRecord
2020-04-29 14:55 - 2020-04-29 14:55 - 000000000 ____D C:\Users\darko\AppData\Roaming\21626
2020-04-29 14:53 - 2020-04-29 14:53 - 000000000 ____D C:\Users\darko\AppData\Roaming\21143
2020-04-29 05:45 - 2020-04-29 05:45 - 000000000 ____D C:\Wondershare Video Converter Ultimate
2020-04-29 05:42 - 2020-04-29 05:45 - 000000000 ____D C:\Users\darko\AppData\Local\Wondershare
2020-04-29 05:42 - 2020-04-29 05:45 - 000000000 ____D C:\ProgramData\GraphicsType
2020-04-29 05:42 - 2020-04-29 05:42 - 000001292 _____ C:\Users\Public\Desktop\Wondershare Video Converter Ultimate.lnk
2020-04-29 05:42 - 2020-04-29 05:42 - 000001292 _____ C:\ProgramData\Desktop\Wondershare Video Converter Ultimate.lnk
2020-04-29 05:42 - 2020-04-29 05:42 - 000000000 ____D C:\Users\darko\Documents\Wondershare MediaServer
2020-04-29 05:42 - 2020-04-29 05:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2020-04-29 05:41 - 2020-04-29 05:44 - 000000000 ____D C:\Users\darko\AppData\Roaming\Wondershare
2020-04-29 05:41 - 2020-04-29 05:41 - 000000000 ____D C:\Program Files (x86)\Wondershare
2020-04-29 05:38 - 2020-04-29 05:38 - 118969533 _____ C:\Users\darko\Downloads\WVCUfINAL2018-WOLFGAME.rar
2020-04-29 05:05 - 2020-04-29 05:05 - 121707138 _____ C:\Users\darko\Downloads\VideoSoloVideoConverterUltimate.2.0.10.taiwebs.com.rar
2020-04-29 05:05 - 2020-04-16 14:58 - 000000000 ____D C:\Users\darko\Downloads\x86
2020-04-29 05:05 - 2020-04-16 14:58 - 000000000 ____D C:\Users\darko\Downloads\x64
2020-04-29 04:53 - 2020-04-29 04:53 - 000000000 ____D C:\VideoSolo Studio
2020-04-29 04:45 - 2020-04-29 04:45 - 000000000 ___HD C:\VideoSolo Temp
2020-04-29 04:44 - 2020-04-29 04:44 - 002544648 _____ ( ) C:\Users\darko\Downloads\video-converter-ultimate.exe
2020-04-29 04:32 - 2020-04-29 04:40 - 000000000 ____D C:\Users\darko\AppData\Roaming\HandBrake
2020-04-29 04:32 - 2020-04-29 04:32 - 000000824 _____ C:\Users\darko\Desktop\HandBrake.lnk
2020-04-29 04:32 - 2020-04-29 04:32 - 000000000 ____D C:\Users\darko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HandBrake
2020-04-29 04:32 - 2020-04-29 04:32 - 000000000 ____D C:\Program Files\HandBrake
2020-04-29 04:31 - 2020-04-29 04:31 - 013537880 _____ C:\Users\darko\Downloads\HandBrake-1.3.1-x86_64-Win_GUI.exe
2020-04-29 04:29 - 2020-04-29 04:29 - 007100928 _____ () C:\Users\darko\Downloads\PocketDivXEncoder_0.3.96.exe
2020-04-29 03:43 - 2020-04-29 03:43 - 000000000 ____D C:\Users\darko\AppData\Roaming\21004
2020-04-29 03:36 - 2020-04-28 14:05 - 000000000 ____D C:\Users\darko\Downloads\Flamman-Dvfa1108664
2020-04-29 03:35 - 2020-04-29 03:35 - 223995711 _____ C:\Users\darko\Downloads\Flamman-Dvfa1108664.rar
2020-04-29 03:26 - 2020-04-29 03:26 - 000000000 ____D C:\Users\darko\Documents\Proyectos VideoPad
2020-04-29 03:11 - 2020-05-01 06:16 - 000000000 ____D C:\Windows\system32\Tasks\NCH Software
2020-04-29 03:10 - 2020-04-29 03:10 - 002953288 _____ (NCH Software) C:\Users\darko\Downloads\vppsetup.exe
2020-04-29 01:06 - 2020-04-29 01:06 - 000003632 _____ C:\Users\darko\Downloads\composite_es-ES_FORCED_ddf29687-f191-43c2-8243-99fcf4ff6e4c_80186545-5d23-4fac-b959-cf097d215a93.m3u8
2020-04-29 00:55 - 2020-04-29 00:56 - 129059840 _____ C:\Users\darko\Documents\disney 1.ac3
2020-04-28 23:53 - 2020-04-28 23:53 - 000024212 _____ C:\Users\darko\Downloads\2e693764-2d22-4e2a-b4ec-6eb32966f03f.tmp
2020-04-27 22:15 - 2020-04-24 14:43 - 000000000 ____D C:\Users\darko\Downloads\Flamman-Dvfa1108564
2020-04-27 22:13 - 2020-04-27 22:13 - 197347667 _____ C:\Users\darko\Downloads\Flamman-Dvfa1108564.rar
2020-04-27 22:03 - 2020-04-27 22:03 - 000019752 _____ C:\Users\darko\Documents\cc_20200427_220344.reg
2020-04-27 21:54 - 2020-04-27 21:54 - 000014987 _____ C:\Users\darko\Downloads\92a5oSJc
2020-04-27 21:52 - 2020-04-27 21:52 - 000003977 _____ C:\Users\darko\Downloads\eBbDsk86
2020-04-27 05:05 - 2020-04-27 05:18 - 054194835 _____ C:\Users\darko\Downloads\AbbasPC.Net_FlixGrab 5.0.10.418 Premium.rar
2020-04-27 04:36 - 2020-04-27 04:36 - 000000000 ____D C:\Users\darko\AppData\Local\ArcSoft
2020-04-27 04:32 - 2020-04-27 04:45 - 000000000 ____D C:\Users\darko\AppData\Roaming\ArcSoft
2020-04-27 04:31 - 2020-04-27 04:45 - 000000000 ____D C:\ProgramData\ArcSoft
2020-04-27 04:26 - 2020-04-27 04:26 - 000000000 ____D C:\Program Files (x86)\ArcSoft
2020-04-26 21:43 - 2020-04-26 21:43 - 000000000 ____D C:\Users\darko\Downloads\total media capturadora
2020-04-26 21:42 - 2020-04-26 21:42 - 281216999 _____ C:\Users\darko\Downloads\TotalMediaExtreme2 - FonexHD.rar
2020-04-26 02:38 - 2020-04-27 05:37 - 000000000 ____D C:\Users\darko\AppData\Local\FreeGrabApp
2020-04-26 02:37 - 2020-05-05 05:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGrabApp
2020-04-26 02:37 - 2020-05-05 05:06 - 000000000 ____D C:\Program Files (x86)\FreeGrabApp
2020-04-26 02:36 - 2020-04-26 02:37 - 054459008 _____ (FreeGrabApp Ltd ) C:\Users\darko\Downloads\FreeAmazonPrimeDownload(2).exe
2020-04-26 02:35 - 2020-04-27 05:20 - 000000000 ____D C:\Users\darko\AppData\Roaming\FreeGrabApp
2020-04-26 02:35 - 2020-04-26 02:36 - 054459008 _____ (FreeGrabApp Ltd ) C:\Users\darko\Downloads\FreeAmazonPrimeDownload(1).exe
2020-04-26 02:00 - 2020-04-26 02:00 - 054459008 _____ (FreeGrabApp Ltd ) C:\Users\darko\Downloads\FreeAmazonPrimeDownload.exe
2020-04-24 17:21 - 2015-02-04 02:00 - 000608072 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2020-04-24 17:14 - 2020-01-30 04:30 - 000834560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2020-04-24 17:14 - 2020-01-30 04:23 - 001010688 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2020-04-23 17:08 - 2020-04-23 20:25 - 3731802308 _____ C:\Users\darko\Documents\apocalipsis guerra fria del 1 al 4.ts
2020-04-22 10:06 - 2020-04-30 16:57 - 000000000 ____D C:\Users\darko\Desktop\PVR diiumenge 26 abril 2920 mafia
2020-04-21 23:34 - 2020-04-21 23:34 - 008196784 _____ (Malwarebytes) C:\Users\darko\Desktop\adwcleaner_8.0.4.exe
2020-04-21 23:22 - 2015-02-20 00:43 - 016128576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2020-04-21 23:22 - 2012-10-03 00:21 - 001760104 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco64.dll
2020-04-21 23:22 - 2012-10-03 00:21 - 001482600 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco64.dll
2020-04-21 23:18 - 2013-02-27 15:37 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2020-04-21 23:11 - 2020-05-06 00:58 - 000003932 _____ C:\Windows\system32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d
2020-04-21 23:11 - 2020-05-06 00:58 - 000003684 _____ C:\Windows\system32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon
2020-04-21 23:11 - 2020-04-21 23:17 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2020-04-21 23:11 - 2020-04-21 23:17 - 000000000 ____D C:\Program Files\Intel
2020-04-21 23:11 - 2013-03-12 13:19 - 000016344 _____ (Intel Corporation) C:\Windows\system32\Drivers\IntelMEFWVer.dll
2020-04-21 23:04 - 2020-04-21 23:18 - 000000000 ____D C:\Program Files (x86)\Intel
2020-04-21 23:04 - 2013-04-11 05:10 - 000785904 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3xhc.sys
2020-04-21 23:04 - 2013-04-11 05:10 - 000366576 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hub.sys
2020-04-21 23:04 - 2013-04-11 05:10 - 000020464 _____ (Intel Corporation) C:\Windows\system32\Drivers\iusb3hcs.sys
2020-04-21 21:59 - 2019-03-20 03:18 - 001549952 _____ (AVerMedia TECHNOLOGIES, Inc.) C:\Windows\system32\Drivers\AVer330USB.sys
2020-04-21 21:59 - 2014-07-15 11:41 - 000454064 _____ C:\Windows\system32\Drivers\qpvidfwusb.bin
2020-04-21 21:57 - 2020-04-21 21:57 - 029121670 _____ C:\Users\darko\Downloads\GL310_AVer_Drv_v3.2801.x.40.zip
2020-04-21 10:31 - 2020-05-05 18:48 - 000000000 ____D C:\Users\darko\AppData\Roaming\avidemux
2020-04-21 10:31 - 2020-04-21 10:31 - 000000000 ____D C:\Users\darko\AppData\Local\avidemux
2020-04-21 10:30 - 2020-04-21 10:30 - 000000000 ____D C:\Users\darko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Avidemux 2.7 VC++ 64bits
2020-04-21 10:30 - 2020-04-21 10:30 - 000000000 ____D C:\Program Files\Avidemux 2.7 VC++ 64bits
2020-04-21 10:28 - 2020-04-21 10:29 - 037410703 _____ C:\Users\darko\Downloads\avidemux-2-7-5-64-bit.exe
2020-04-20 21:48 - 2020-04-20 21:48 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Total Video Converter
2020-04-20 21:47 - 2020-04-20 21:48 - 000000000 ____D C:\Program Files (x86)\Total Video Converter
2020-04-20 21:45 - 2020-04-20 21:45 - 015728768 _____ (EffectMatrix Inc. ) C:\Users\darko\Downloads\total-video-converter-3-71-it-es-en-fr-de-win.exe
2020-04-20 15:13 - 2020-04-20 15:13 - 000202506 _____ C:\Users\darko\Downloads\K91ifNOw
2020-04-20 15:12 - 2020-04-20 15:12 - 000220226 _____ C:\Users\darko\Downloads\QrOxK4lZ
2020-04-20 15:11 - 2020-04-20 15:11 - 000201281 _____ C:\Users\darko\Downloads\gY6Dw0oH
2020-04-20 15:09 - 2020-04-20 15:09 - 000185353 _____ C:\Users\darko\Downloads\0Q3pddIy
2020-04-19 04:53 - 2020-05-06 00:58 - 000002998 _____ C:\Windows\system32\Tasks\{182B3137-A582-47C4-B92C-B406D4030779}
2020-04-18 23:03 - 2020-04-18 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVerMedia
2020-04-18 23:03 - 2013-08-05 10:44 - 000125440 _____ (AVerMedia Technology, Inc.) C:\Windows\SysWOW64\PropPage.ax
2020-04-18 23:02 - 2020-04-18 23:03 - 000000000 ____D C:\Program Files (x86)\AVerMedia
2020-04-18 21:32 - 2020-04-18 22:55 - 000000000 ____D C:\Users\darko\AppData\Local\RECentral
2020-04-18 21:31 - 2020-04-18 21:31 - 073649352 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(7).exe
2020-04-18 21:30 - 2020-04-18 21:30 - 000023848 _____ C:\Users\darko\Documents\cc_20200418_213027.reg
2020-04-18 21:06 - 2020-04-18 21:26 - 000000000 ____D C:\Users\darko\AppData\Roaming\Easeware
2020-04-18 21:06 - 2020-04-18 21:06 - 005084576 _____ (Easeware ) C:\Users\darko\Downloads\DriverEasy_Setup.exe
2020-04-18 20:57 - 2020-04-18 20:57 - 000000000 ____D C:\ProgramData\PlugCache
2020-04-18 10:13 - 2020-04-18 10:13 - 000136368 _____ C:\Users\darko\Downloads\EUT8gO8O
2020-04-15 11:52 - 2020-05-06 00:58 - 000004062 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1574684450
2020-04-13 02:32 - 2020-04-13 02:32 - 000073728 _____ C:\Windows\system32\config\SECURITY.gu
2020-04-13 02:30 - 2019-11-11 03:50 - 000035832 _____ (Glarysoft Ltd) C:\Windows\system32\RegBootDefrag.exe
2020-04-13 01:56 - 2020-04-13 01:59 - 000000000 ____D C:\Users\darko\AppData\Roaming\KSM
2020-04-13 01:55 - 2020-04-13 01:59 - 060898944 _____ (Kingston Digital, Inc ) C:\Users\darko\Downloads\KSM_setup_1.1.2.5.exe
2020-04-13 01:34 - 2020-04-13 01:34 - 047610272 _____ (FinalWire Ltd. ) C:\Users\darko\Downloads\aida64extreme625.exe
2020-04-13 01:33 - 2020-04-13 01:33 - 051347908 _____ C:\Users\darko\Downloads\aida64extreme625.zip.part
2020-04-13 01:33 - 2020-04-13 01:33 - 000000000 _____ C:\Users\darko\Downloads\aida64extreme625.zip
2020-04-12 12:50 - 2020-04-12 12:51 - 050652428 _____ (KLCP ) C:\Users\darko\Downloads\k-lite-codec-pack-full-15-4-4.exe
2020-04-11 23:13 - 2020-04-20 19:14 - 000500960 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-04-11 23:13 - 2020-04-11 23:13 - 000337048 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-04-11 23:13 - 2020-04-11 23:13 - 000235696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-04-11 23:13 - 2020-04-11 23:13 - 000175920 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2020-04-11 23:13 - 2020-04-11 23:13 - 000038152 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetNd6.sys
2020-04-11 21:58 - 2020-04-11 21:58 - 073649352 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(6).exe
2020-04-11 21:41 - 2020-04-11 21:41 - 072444328 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.117.2018101201_Drv_3.7.x.39_StreamEngine_1.3.0.16.exe
2020-04-11 21:28 - 2020-04-22 12:27 - 000000000 _____ C:\Windows\system32\last.dump
2020-04-11 21:24 - 2020-04-11 21:24 - 073649352 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(5).exe
2020-04-11 13:58 - 2020-04-11 14:02 - 1171386519 _____ C:\Users\darko\Downloads\sol2 720.mp4
2020-04-10 11:13 - 2020-04-10 11:18 - 1895976183 _____ C:\Users\darko\Downloads\&&mc&&mll&&.1x02.m1080p.es.mkv
2020-04-09 21:54 - 2020-04-09 21:55 - 073649352 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(4).exe
2020-04-09 21:48 - 2020-04-09 21:48 - 000007974 _____ C:\Users\darko\Documents\cc_20200409_214759.reg
2020-04-09 21:47 - 2020-04-09 21:47 - 000022546 _____ C:\Users\darko\Documents\cc_20200409_214751.reg
2020-04-08 21:26 - 2020-04-08 21:46 - 650683928 _____ C:\Users\darko\Downloads\22720.mp4
2020-04-08 01:29 - 2020-04-08 01:29 - 000017724 _____ C:\Users\darko\Downloads\ukUuwwgY
2020-04-08 01:28 - 2020-04-08 01:28 - 000057849 _____ C:\Users\darko\Downloads\LACKE4g5
2020-04-08 01:27 - 2020-04-08 01:27 - 000014557 _____ C:\Users\darko\Downloads\U8eCrLUk
2020-04-08 01:26 - 2020-04-08 01:26 - 000010741 _____ C:\Users\darko\Downloads\4QMqwKST
2020-04-08 01:25 - 2020-04-08 01:25 - 000018763 _____ C:\Users\darko\Downloads\CuezRPeA
2020-04-07 16:06 - 2020-04-07 16:06 - 073649352 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(3).exe
2020-04-07 16:03 - 2020-04-07 16:03 - 000022498 _____ C:\Users\darko\Documents\cc_20200407_160327.reg
2020-04-07 15:38 - 2020-04-07 15:39 - 073649352 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(2).exe
2020-04-07 15:33 - 2013-04-22 12:00 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2020-04-07 15:33 - 2013-04-22 12:00 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2020-04-07 15:33 - 2013-04-22 12:00 - 000495616 _____ C:\Windows\SysWOW64\D3DX8ab.dll
2020-04-07 15:33 - 2013-04-22 12:00 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2020-04-07 15:33 - 2013-04-22 12:00 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2020-04-07 15:33 - 2012-11-25 15:26 - 002365756 _____ C:\Windows\SysWOW64\libfftw3-3.dll
2020-04-07 15:33 - 2012-04-21 06:21 - 001625088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2020-04-07 15:31 - 2020-04-07 15:31 - 074210168 _____ (Igor Pavlov) C:\Users\darko\Downloads\GL310_RECentral_1.3.0.120_Drv_3.2801.x.40.exe
2020-04-06 21:22 - 2020-04-06 21:22 - 000075384 _____ C:\Users\darko\Downloads\eb789d91-88cc-45fc-a638-179408007bbb.ttml2
2020-04-06 21:20 - 2020-04-06 21:21 - 000082938 _____ C:\Users\darko\Downloads\9ccec896-4f77-4b96-aee9-3a0714ee12c5.ttml2
2020-04-06 21:19 - 2020-04-06 21:19 - 000080697 _____ C:\Users\darko\Downloads\dbaa74f4-11fa-4ab8-bcba-3edf6b1f7513.ttml2
2020-04-06 21:16 - 2020-04-06 21:16 - 000091843 _____ C:\Users\darko\Downloads\e6fc86f3-f4b3-4473-908d-ac783f472e8e.ttml2
==================== Un mes (modificado) ==================
(Si una entrada es incluida en el fixlist, el archivo/carpeta será eliminado/a.)
2020-05-06 02:08 - 2009-07-14 06:45 - 000046752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-05-06 02:08 - 2009-07-14 06:45 - 000046752 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-05-06 02:04 - 2019-11-10 09:39 - 000000000 ____D C:\ProgramData\NVIDIA
2020-05-06 02:03 - 2019-11-16 12:31 - 000004168 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-06 02:03 - 2019-11-11 07:04 - 000004128 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-05-06 01:59 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-05-06 01:50 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-05-06 01:49 - 2019-11-15 20:08 - 000000000 ____D C:\Users\darko\AppData\Local\CrashDumps
2020-05-06 01:47 - 2019-11-10 10:03 - 000000000 ____D C:\Users\darko\AppData\LocalLow\Mozilla
2020-05-06 01:25 - 2019-12-18 00:11 - 000000000 ____D C:\ProgramData\TEMP
2020-05-06 01:22 - 2019-11-11 02:00 - 000000000 ____D C:\Users\darko\AppData\Roaming\Plcore
2020-05-06 01:09 - 2019-11-11 01:55 - 000000000 ____D C:\Users\darko\Documents\DVDFab10
2020-05-06 01:05 - 2019-11-10 10:05 - 000000000 ____D C:\Users\darko\AppData\Roaming\vlc
2020-05-06 00:59 - 2019-12-12 20:26 - 000002964 _____ C:\Windows\system32\Tasks\{F29356F6-35C4-4206-85B4-74537A1F9555}
2020-05-06 00:59 - 2019-12-12 20:26 - 000002964 _____ C:\Windows\system32\Tasks\{DDF359B2-A910-4575-B16B-79236EA09C02}
2020-05-06 00:58 - 2020-04-01 21:38 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2020-04-01 21:38 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2020-04-01 21:38 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2020-04-01 21:37 - 000003704 _____ C:\Windows\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2020-01-27 08:20 - 000002998 _____ C:\Windows\system32\Tasks\{490C2C34-48D1-405A-80D6-2429DC03A0AF}
2020-05-06 00:58 - 2020-01-27 08:19 - 000002998 _____ C:\Windows\system32\Tasks\{43DC5810-B851-4A1B-A91C-AA20346F8336}
2020-05-06 00:58 - 2020-01-24 22:45 - 000002998 _____ C:\Windows\system32\Tasks\{3D95CB0B-E8E1-486C-8371-90745C2D4246}
2020-05-06 00:58 - 2020-01-13 23:25 - 000003034 _____ C:\Windows\system32\Tasks\{526116DA-7841-46D5-8AC2-178CD6AD2EA0}
2020-05-06 00:58 - 2020-01-13 10:59 - 000002998 _____ C:\Windows\system32\Tasks\{C1A6CCE2-F24D-401D-B552-99F7ADF82091}
2020-05-06 00:58 - 2020-01-13 10:47 - 000003218 _____ C:\Windows\system32\Tasks\{D7B2AA58-A84E-4248-873A-C29775A87FD0}
2020-05-06 00:58 - 2019-12-27 01:07 - 000002998 _____ C:\Windows\system32\Tasks\{5018B17E-65A7-4258-97C3-084C98F9360D}
2020-05-06 00:58 - 2019-12-12 20:26 - 000002964 _____ C:\Windows\system32\Tasks\{BC024EC4-5258-4794-8DC2-F83952B9AA10}
2020-05-06 00:58 - 2019-12-06 15:47 - 000003276 _____ C:\Windows\system32\Tasks\{3FA020EA-FD00-48D6-8566-790A8AAF0DF3}
2020-05-06 00:58 - 2019-11-16 12:33 - 000003536 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-05-06 00:58 - 2019-11-16 12:33 - 000003408 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-05-06 00:58 - 2019-11-16 09:06 - 000003096 _____ C:\Windows\system32\Tasks\npcapwatchdog
2020-05-06 00:58 - 2019-11-16 05:00 - 000004450 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-05-06 00:58 - 2019-11-16 05:00 - 000004290 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-05-06 00:58 - 2019-11-16 04:45 - 000003492 _____ C:\Windows\system32\Tasks\{824804C8-DC53-4F78-93B7-4BBC70846505}
2020-05-06 00:58 - 2019-11-14 06:25 - 000003280 _____ C:\Windows\system32\Tasks\klcp_update
2020-05-06 00:58 - 2019-11-14 05:53 - 000002998 _____ C:\Windows\system32\Tasks\{BD019C79-43EC-405F-B80A-C00D38F45669}
2020-05-06 00:58 - 2019-11-14 05:32 - 000004146 _____ C:\Windows\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2019-11-14 05:32 - 000003940 _____ C:\Windows\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2019-11-14 05:32 - 000003798 _____ C:\Windows\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2019-11-14 05:32 - 000003790 _____ C:\Windows\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2019-11-12 07:14 - 000002998 _____ C:\Windows\system32\Tasks\{92F16107-CD45-412B-B8D2-2F0E8F964A05}
2020-05-06 00:58 - 2019-11-12 07:12 - 000002998 _____ C:\Windows\system32\Tasks\{804D460C-6624-4E76-BA12-1DE1CF9F2329}
2020-05-06 00:58 - 2019-11-12 07:12 - 000002998 _____ C:\Windows\system32\Tasks\{637C5AF2-A48B-49B7-8664-30C8902480B4}
2020-05-06 00:58 - 2019-11-12 06:23 - 000003738 _____ C:\Windows\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2019-11-12 06:23 - 000003494 _____ C:\Windows\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2020-05-06 00:58 - 2019-11-11 07:04 - 000002808 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-05-06 00:47 - 2019-11-10 11:11 - 000000000 ____D C:\Users\darko\Desktop\Fotos Jordi
2020-05-05 23:58 - 2019-01-22 16:10 - 000736146 _____ C:\Windows\system32\perfh013.dat
2020-05-05 23:58 - 2019-01-22 16:10 - 000153312 _____ C:\Windows\system32\perfc013.dat
2020-05-05 23:58 - 2019-01-22 16:09 - 000732694 _____ C:\Windows\system32\perfh010.dat
2020-05-05 23:58 - 2019-01-22 16:09 - 000147056 _____ C:\Windows\system32\perfc010.dat
2020-05-05 23:58 - 2019-01-22 16:08 - 000676402 _____ C:\Windows\system32\perfh00E.dat
2020-05-05 23:58 - 2019-01-22 16:08 - 000171484 _____ C:\Windows\system32\perfc00E.dat
2020-05-05 23:58 - 2019-01-22 16:06 - 000748450 _____ C:\Windows\system32\perfh00A.dat
2020-05-05 23:58 - 2019-01-22 16:06 - 000159420 _____ C:\Windows\system32\perfc00A.dat
2020-05-05 23:58 - 2019-01-22 16:05 - 000599636 _____ C:\Windows\system32\perfh008.dat
2020-05-05 23:58 - 2019-01-22 16:05 - 000111338 _____ C:\Windows\system32\perfc008.dat
2020-05-05 23:58 - 2009-07-14 07:13 - 005006056 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-05 21:09 - 2020-03-26 00:26 - 000201024 _____ C:\Users\darko\Downloads\FileUploader(1).nast
2020-05-05 20:55 - 2020-03-26 03:52 - 000044254 _____ C:\Users\darko\Downloads\FileUploader(1).err
2020-05-05 16:12 - 2019-11-11 01:47 - 000000000 ____D C:\Users\darko\AppData\Roaming\qBittorrent
2020-05-05 01:09 - 2019-11-10 11:09 - 000000000 ____D C:\ProgramData\Licenses
2020-05-05 00:08 - 2019-11-10 11:09 - 000000000 ____D C:\Users\darko\AppData\Roaming\VideoReDo-TVSuite5
2020-05-04 21:35 - 2019-11-10 11:22 - 000000000 ____D C:\ProgramData\boost_interprocess
2020-05-04 17:48 - 2020-02-27 20:12 - 000000000 ____D C:\Users\darko\Downloads\opera autoupdate
2020-05-04 06:42 - 2019-11-11 14:27 - 000000000 ____D C:\ProgramData\Package Cache
2020-05-04 06:29 - 2020-04-02 07:55 - 548968288 _____ C:\Users\darko\Downloads\PT VIARK DROI 1.27.zip
2020-05-04 04:30 - 2019-11-11 04:28 - 000000000 ____D C:\Users\darko\AppData\Local\JDownloader 2.0
2020-05-04 00:57 - 2019-11-11 04:29 - 000002059 _____ C:\Users\darko\Desktop\JDownloader 2.lnk
2020-05-04 00:57 - 2019-11-11 04:29 - 000000000 ____D C:\Users\darko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2020-05-04 00:12 - 2020-03-26 00:23 - 002471424 _____ (z_o_o_m's corp.) C:\Users\darko\Downloads\FileUploader(1).exe
2020-05-01 00:13 - 2019-11-12 05:08 - 000001070 _____ C:\Users\Public\Desktop\VLC media player.lnk
2020-05-01 00:13 - 2019-11-12 05:08 - 000001070 _____ C:\ProgramData\Desktop\VLC media player.lnk
2020-05-01 00:05 - 2019-12-06 00:48 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-04-30 19:53 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\rescache
2020-04-30 19:15 - 2019-11-14 13:11 - 000001948 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-04-30 19:15 - 2019-11-14 13:11 - 000001948 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-04-30 19:13 - 2019-11-14 13:10 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2020-04-30 16:29 - 2009-07-14 06:45 - 000285264 _____ C:\Windows\system32\FNTCACHE.DAT
2020-04-29 06:14 - 2020-04-02 06:28 - 000000000 ____D C:\Users\darko\AppData\Roaming\NVIDIA
2020-04-29 05:54 - 2020-02-07 17:03 - 000000000 ____D C:\ProgramData\Wondershare
2020-04-29 05:45 - 2019-11-10 09:36 - 000066912 _____ C:\Users\darko\AppData\Local\GDIPFONTCACHEV1.DAT
2020-04-29 05:39 - 2020-01-19 02:35 - 000000000 ____D C:\Users\darko\Downloads\Nueva carpeta (2)
2020-04-28 23:52 - 2019-11-14 15:15 - 000000000 ____D C:\Users\darko\Downloads\m3u8
2020-04-28 15:32 - 2019-11-14 13:42 - 000000000 ____D C:\Program Files (x86)\Argente Utilities
2020-04-28 14:59 - 2020-03-25 13:27 - 000000000 ____D C:\Windows\Minidump
2020-04-28 14:51 - 2019-11-14 13:44 - 000000000 ____D C:\Program Files (x86)\Glary Utilities 5
2020-04-28 01:28 - 2019-11-16 12:39 - 000002222 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-04-28 01:27 - 2019-11-16 12:39 - 000002181 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-04-28 01:27 - 2019-11-16 12:39 - 000002181 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-04-27 05:10 - 2019-11-18 23:15 - 000000000 ____D C:\Users\darko\Downloads\Nueva carpeta
2020-04-27 04:47 - 2019-11-10 09:26 - 000000000 ____D C:\Users\darko
2020-04-27 04:45 - 2011-04-12 10:28 - 000000000 ___RD C:\Users\Public\Recorded TV
2020-04-27 04:45 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\registration
2020-04-25 22:43 - 2019-11-10 12:14 - 000000000 ____D C:\Users\darko\AppData\Local\ElevatedDiagnostics
2020-04-24 17:17 - 2019-11-10 09:37 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2020-04-24 00:22 - 2019-11-25 13:55 - 000000000 ____D C:\Users\darko\AppData\Roaming\Telegram Desktop
2020-04-21 23:25 - 2019-11-10 09:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2020-04-21 23:19 - 2019-11-10 09:32 - 000000000 ____D C:\Users\darko\Downloads\ASRSetup
2020-04-21 23:17 - 2019-11-12 03:44 - 000000000 ____D C:\ProgramData\Intel
2020-04-21 23:11 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-04-21 23:10 - 2019-11-10 10:16 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2020-04-21 21:59 - 2019-11-10 10:13 - 000000000 ____D C:\Windows\Driver Cache
2020-04-18 21:28 - 2019-11-16 06:53 - 000000000 ____D C:\ProgramData\Adobe
2020-04-18 21:28 - 2019-11-16 05:00 - 000000000 ____D C:\Users\darko\AppData\Local\Adobe
2020-04-18 21:27 - 2019-11-16 05:00 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-04-16 11:14 - 2019-11-16 12:31 - 000459408 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-04-15 14:05 - 2019-11-16 05:00 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-04-15 14:05 - 2019-11-16 05:00 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-04-15 14:05 - 2019-11-16 05:00 - 000000000 ____D C:\Windows\system32\Macromed
2020-04-13 07:02 - 2019-11-11 07:04 - 000000000 ____D C:\Program Files\CCleaner
2020-04-13 02:32 - 2009-07-14 04:34 - 089915392 _____ C:\Windows\system32\config\SOFTWARE.gu.bak
2020-04-13 02:32 - 2009-07-14 04:34 - 022806528 _____ C:\Windows\system32\config\SYSTEM.gu.bak
2020-04-13 02:32 - 2009-07-14 04:34 - 001835008 _____ C:\Windows\system32\config\DEFAULT.gu.bak
2020-04-13 02:32 - 2009-07-14 04:34 - 000262144 _____ C:\Windows\system32\config\SECURITY.gu.bak
2020-04-13 02:32 - 2009-07-14 04:34 - 000262144 _____ C:\Windows\system32\config\SAM.gu.bak
2020-04-12 12:53 - 2019-11-14 06:24 - 000000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2020-04-12 12:52 - 2019-11-14 06:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2020-04-11 23:13 - 2019-11-16 12:31 - 000851808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-04-11 23:13 - 2019-11-16 12:31 - 000317280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-04-11 23:13 - 2019-11-16 12:31 - 000206120 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-04-11 23:13 - 2019-11-16 12:31 - 000109480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-04-11 23:13 - 2019-11-16 12:31 - 000085056 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-04-11 23:13 - 2019-11-16 12:31 - 000042984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-04-11 23:13 - 2019-11-16 12:31 - 000037856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2020-04-11 23:12 - 2019-11-16 12:31 - 000234776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-04-11 23:12 - 2019-11-16 12:31 - 000178968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-04-11 23:12 - 2019-11-16 12:31 - 000060696 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-04-08 09:33 - 2019-11-11 01:40 - 000000000 ____D C:\Users\darko\AppData\Roaming\Subtitle Edit
2020-04-07 23:00 - 2019-12-30 00:07 - 000000000 ____D C:\Windows\system32\MRT
2020-04-07 22:56 - 2019-12-30 00:06 - 121542864 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2020-04-07 16:04 - 2019-11-10 11:11 - 000000000 ____D C:\Users\darko\Downloads\Avermedia programa y solicio
2020-04-07 00:15 - 2019-11-10 09:26 - 000000000 ____D C:\Users\darko\AppData\Local\VirtualStore
==================== Archivos en la raíz de algunos directorios ========
2019-11-10 11:22 - 2019-11-10 11:22 - 000000171 _____ () C:\Users\darko\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2020-04-29 18:21 - 2018-10-13 19:51 - 000009301 _____ () C:\Users\darko\AppData\Roaming\fab_config.xml
==================== SigCheck ============================
(No existe una corrección automática para los archivos que no pasan la verificación.)
LastRegBack: 2020-04-28 18:15
==================== Final de FRST.txt ========================
Bueno creo que no me dejé ninguno… ya me dirás si tengo que hacer algo más
Muchas gracias
Hola.
Te falta por poner Addition.txt y ademas en el informe de Malwarebytes se indica que dejaste infecciones sin controlar "Sin acciones por parte del usuario".
Saludos.
1 me gusta
Perdón por el despiste… Gracias
Así es, me detecto el patch de un programa… No lo eliminé para que no me deje de funcionar. Lo demás si lo eliminñé como pedías Addition.txt
Resultados del Análisis Adicional de Farbar Recovery Scan Tool (x64) Versión: 03-05-2020
Ejecutado por darko (06-05-2020 02:09:23)
Ejecutado desde C:\Users\darko\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2019-11-10 07:26:13)
Modo de Inicio: Normal
==========================================================
==================== Cuentas: =============================
Administrador (S-1-5-21-4249422975-1014931290-1555897128-500 - Administrator - Disabled)
darko (S-1-5-21-4249422975-1014931290-1555897128-1000 - Administrator - Enabled) => C:\Users\darko
HomeGroupUser$ (S-1-5-21-4249422975-1014931290-1555897128-1003 - Limited - Enabled)
Invitado (S-1-5-21-4249422975-1014931290-1555897128-501 - Limited - Disabled)
==================== Centro de Seguridad ========================
(Si una entrada es incluida en el fixlist, será eliminada.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Programas instalados ======================
(Solo los programas de adware con indicador "Oculto", pueden ser añadidos al fixlist para hacerlos visibles. Los programas adware deben ser desinstalados manualmente.)
Actualización de NVIDIA 38.0.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 38.0.4.0 - NVIDIA Corporation) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.0.4990 - Adobe Systems Inc.)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.363 - Adobe)
Argente Utilities 1.0.7.0 (HKLM-x32\...\Argente Utilities_is1) (Version: 1.0.7.0 - Raúl Argente)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.2.2401 - Avast Software)
AVerMedia GL310 USB HD Capture Device 3.2801.64.40 (HKLM-x32\...\AVerMedia GL310 USB HD Capture Device) (Version: 3.2801.64.40 - AVerMedia TECHNOLOGIES, Inc.)
AVerMedia RECentral (HKLM-x32\...\{30D6B6ED-E039-4D62-8E07-E058D17A9372}) (Version: 1.3.0.109.2016090201 - AVerMedia Technologies, Inc.) Hidden
AVerMedia RECentral (HKLM-x32\...\InstallShield_{30D6B6ED-E039-4D62-8E07-E058D17A9372}) (Version: 1.3.0.109.2016090201 - AVerMedia Technologies, Inc.)
Avidemux VC++ 64bits (HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\{875fe326-c49b-4ddd-be53-b33c6469f6ea}) (Version: 2.7.5 - Mean)
CCleaner (HKLM\...\CCleaner) (Version: 5.65 - Piriform)
DVDFab 10.2.1.7 (HKLM\...\{A0AB5D43-991D-4F3F-A033-2D6BC933AB44}_is1) (Version: 10.2.1.7 - DVDFab.cn)
FFMPEG Addon (HKLM-x32\...\{111124AF-1ED4-44EF-B674-111111985342}_is1) (Version: 1.00 - FFMPEG)
FileZilla Client 3.47.2.1 (HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\FileZilla Client) (Version: 3.47.2.1 - Tim Kosse)
FlixGrab (HKLM-x32\...\FlixGrab_is1) (Version: 5.0.10.418 - FreeGrabApp Ltd)
Free Amazon Prime Download (HKLM-x32\...\Free Amazon Prime Download_is1) (Version: 5.0.4.407 - FreeGrabApp Ltd)
Glary Utilities 5.131 (HKLM-x32\...\Glary Utilities 5) (Version: 5.131.0.157 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.129 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
HandBrake 1.3.1 (HKLM-x32\...\HandBrake) (Version: 1.3.1 - )
Inpaint 7.2 (HKLM\...\Inpaint_is1) (Version: 7.2 - Teorex)
Inpaint 8.1 (HKLM\...\{5808866F-D115-46B2-8123-BB6801968101}_is1) (Version: - Teorex)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.36702 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.0.0.102 - Intel Corporation)
Java 8 Update 231 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180231F0}) (Version: 8.0.2310.11 - Oracle Corporation)
JDownloader 2 (HKLM-x32\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
K-Lite Codec Pack 15.4.4 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.4 - KLCP)
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
MediaInfo 19.09 (HKLM\...\MediaInfo) (Version: 19.09 - MediaArea.net)
Microsoft .NET Framework 4.8 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (Italiano) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1040) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (Nederlands) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1043) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET-keretrendszer 4.8 (magyar) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1038) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.22.27821 (HKLM-x32\...\{6361b579-2795-4886-b2a8-53d5239b6452}) (Version: 14.22.27821.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.22.27821 (HKLM-x32\...\{5bfc1380-fd35-4b85-9715-7351535d077e}) (Version: 14.22.27821.0 - Microsoft Corporation)
MKVcleaver (HKLM-x32\...\{129149DF-CD7B-490E-A56A-81CBA0840854}) (Version: 0.5.0.0 - MKVcleaver)
MKVToolNix 43.0.0 (32-bit) (HKLM-x32\...\MKVToolNix) (Version: 43.0.0 - Moritz Bunkus)
Mozilla Firefox 72.0.2 (x64 es-ES) (HKLM\...\Mozilla Firefox 72.0.2 (x64 es-ES)) (Version: 72.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 70.0.1 - Mozilla)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA Controlador de 3D Vision 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.44 - NVIDIA Corporation)
NVIDIA Controlador de audio HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Controlador de gráficos 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA Controlador de la controladora 3D Vision 306.97 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 306.97 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Software del sistema PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Opera Stable 68.0.3618.63 (HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Opera 68.0.3618.63) (Version: 68.0.3618.63 - Opera Software)
Panel de control de NVIDIA 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 341.44 - NVIDIA Corporation) Hidden
Paquete de controladores de Windows - Realtek (RTL8167) Net (08/28/2018 7.122.0828.2018) (HKLM\...\7B100EC40FE83C62207C2950E3A7B047FAAEF754) (Version: 08/28/2018 7.122.0828.2018 - Realtek)
Python 3.8.2 (32-bit) (HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\{3182483d-078b-48fa-92c2-798baa1fe27d}) (Version: 3.8.2150.0 - Python Software Foundation)
Python 3.8.2 Core Interpreter (32-bit) (HKLM-x32\...\{6BA6203C-85AB-4B9E-8582-CE31B1B5C0ED}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Development Libraries (32-bit) (HKLM-x32\...\{12B4F371-ACE2-435B-BCF1-623F36C4E176}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Documentation (32-bit) (HKLM-x32\...\{45CEE0C6-5BB2-4A8B-B83C-58559A1CA424}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Executables (32-bit) (HKLM-x32\...\{FE5BE50D-21D5-44FB-9A97-5010E68608DA}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 pip Bootstrap (32-bit) (HKLM-x32\...\{2E818780-AC79-4BC0-8023-C1CC46EAC9B6}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Standard Library (32-bit) (HKLM-x32\...\{09CC0C6D-0822-491E-A10E-2A8443DDF170}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Tcl/Tk Support (32-bit) (HKLM-x32\...\{B1528EAE-7E64-49DB-8CE1-514EB30BB38B}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Test Suite (32-bit) (HKLM-x32\...\{EE21EEE7-9D5A-4ECE-B60F-4BFA63BDA937}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python 3.8.2 Utility Scripts (32-bit) (HKLM-x32\...\{E284B869-7701-4A91-82C2-D3E66974A0F9}) (Version: 3.8.2150.0 - Python Software Foundation) Hidden
Python Launcher (HKLM-x32\...\{AF12A465-EA47-447D-B6BF-2A82CDBE2F0E}) (Version: 3.8.6994.0 - Python Software Foundation)
qBittorrent 4.1.8 (HKLM-x32\...\qBittorrent) (Version: 4.1.8 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
Subtitle Edit 3.5.11 (HKLM\...\SubtitleEdit_is1) (Version: 3.5.11.0 - Nikse)
Telegram Desktop version 2.0.1 (HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.0.1 - Telegram FZ-LLC)
Total Audio MP3 Converter v2.3 build 1037 (HKLM-x32\...\{18D13E8A-7BD3-486F-847D-57FBE828F537}_is1) (Version: - Hoo Technologies)
Total Audio MP3 Converter v3.2.3 build 1415 (HKLM-x32\...\{0C2BF220-E21C-493D-B2A3-D89848C719F0}_is1) (Version: - Hoo Technologies)
Total Video Converter 3.71 100812 (HKLM-x32\...\Total Video Converter 3.71_is1) (Version: - EffectMatrix Inc.)
VideoReDo TVSuite Version 6.60.10.816 (HKLM-x32\...\VideoReDo6_is1) (Version: - DRD Systems, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.71 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare Video Converter Ultimate(Build 10.2.1.158) (HKLM-x32\...\Video Converter Ultimate_is1) (Version: 10.2.1.158 - Wondershare Software)
==================== Personalizado CLSID (Lista blanca): ==============
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers1: [TVCShellExt] -> {4E33A7F5-8083-4C08-9D45-C5CED88F5C04} => C:\Program Files (x86)\Total Video Converter\TVCShellExtx64.dll [2010-07-29] () [Archivo no firmado]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-14] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2015-02-04] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-11] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => C:\Program Files (x86)\Glary Utilities 5\x64\ContextHandler.dll [2019-03-11] (Glarysoft LTD -> Glarysoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-11-14] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2018-09-06] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Lista blanca) ====================
==================== Accesos directos & WMI ========================
(Las entradas pueden ser listadas para ser restauradas o eliminadas.)
WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]
==================== Módulos cargados (Lista blanca) =============
2020-04-20 21:48 - 2010-07-29 18:19 - 000293888 _____ () [Archivo no firmado] C:\Program Files (x86)\Total Video Converter\TVCShellExtx64.dll
2020-04-18 23:03 - 2012-08-08 09:20 - 000582144 _____ (AVerMedia Technologies, Inc.) [Archivo no firmado] C:\Program Files (x86)\Common Files\AVerMedia\AVerMedia RECentral\dll\AVerHIDCtrl.dll
2020-04-18 23:03 - 2016-09-02 04:54 - 002058240 _____ (AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado] C:\Program Files (x86)\Common Files\AVerMedia\AVerMedia RECentral\dll\C875Device.dll
2013-04-30 12:25 - 2013-04-30 12:25 - 000531456 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2013-04-30 12:25 - 2013-04-30 12:25 - 000286720 _____ (Intel Corporation) [Archivo no firmado] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2019-01-23 03:39 - 2019-01-23 03:39 - 002651648 _____ (Microsoft Corporation) [Archivo no firmado] c:\windows\system32\wuaueng2.dll
2019-11-13 22:03 - 2019-11-13 22:03 - 000225280 _____ (Microsoft Corporation) [Archivo no firmado] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
==================== Alternate Data Streams (Lista blanca) ========
(Si una entrada es incluida en el fixlist, solamente los ADS serán eliminados.)
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [153]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [151]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [162]
AlternateDataStreams: C:\ProgramData\TEMP:93433455 [858]
AlternateDataStreams: C:\ProgramData\TEMP:EFDFF94D [166]
==================== Modo Seguro (Lista blanca) ==================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El "AlternateShell" será restaurado.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Asociación (Lista blanca) =================
==================== Internet Explorer sitios de confianza/restringidos ==========
(Si una entrada es incluida en el fixlist, será eliminada del registro.)
IE trusted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\1001movie.com -> 1001movie.com
Hay 7519 más sitios.
==================== Hosts contenido: =========================
(Si es necesario, la directiva Hosts: puede ser incluida en el fixlist para restablecer Hosts.)
2009-07-14 04:34 - 2020-04-27 05:22 - 000000824 ____R C:\Windows\system32\drivers\etc\hosts
==================== Otras Áreas ===========================
(Actualmente no existe una corrección automática para esta sección.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;C:\Program Files (x86)\Livestreamer;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\darko\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: El medio no está conectado a internet.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Firewall de Windows está habilitado.
==================== MSCONFIG/TASK MANAGER elementos deshabilitados ==
(Si una entrada es incluida en el fixlist, será eliminada.)
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GUDelayStartup => "C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe" -delayrun
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
==================== Reglas de firewall (Lista blanca) ================
(Si una entrada es incluida en el fixlist, será eliminada del registro. El archivo no se moverá a menos que sea añadido al listado por separado.)
FirewallRules: [{420BAA7D-A145-4185-85EE-6D93FCF87D79}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{98BF4F51-436D-42EE-9860-174E50175902}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{61AF3CD4-AE2F-48DF-BD0B-71AB4E8883A4}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{48DF3344-446E-4E6E-AEBB-C97F17C579A0}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe () [Archivo no firmado]
FirewallRules: [{41436FA6-A11E-4AE5-97B4-3FB35FE09D04}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3281CCD1-A39B-4B75-9E94-6AEE9A6E8015}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2576E3A1-0003-4624-8E6D-05CE377FDE29}] => (Allow) C:\Users\darko\Downloads\m3u8\m3u8x.exe (Mohammad Lachgar) [Archivo no firmado]
FirewallRules: [{83968068-2157-483D-B13D-7E0334FB3FEA}] => (Allow) C:\Users\darko\Downloads\m3u8\m3u8x.exe (Mohammad Lachgar) [Archivo no firmado]
FirewallRules: [{206AC1BC-4DCC-49DB-BE32-8DBF11D05391}] => (Allow) C:\Users\darko\Downloads\m3u8\m3u8x.exe (Mohammad Lachgar) [Archivo no firmado]
FirewallRules: [{2E591C7A-294D-42A3-BB50-14E364BA6CB3}] => (Allow) C:\Users\darko\Downloads\m3u8\m3u8x.exe (Mohammad Lachgar) [Archivo no firmado]
FirewallRules: [TCP Query User{52D1AABC-FB0A-40C2-93C9-3A0D02E34573}C:\users\darko\downloads\fileuploader(1).exe] => (Allow) C:\users\darko\downloads\fileuploader(1).exe (z_o_o_m's corp.) [Archivo no firmado]
FirewallRules: [UDP Query User{50F26472-0230-4B65-8CDA-68D09D93C63A}C:\users\darko\downloads\fileuploader(1).exe] => (Allow) C:\users\darko\downloads\fileuploader(1).exe (z_o_o_m's corp.) [Archivo no firmado]
FirewallRules: [{2166C1E9-0F48-45B8-B53E-FF848925C803}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2D8EB28E-CB1F-4440-BCFD-DEA346D36B20}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5530258A-7A2F-4270-8E37-D23E707A3904}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3678572F-CB5C-4A78-83FD-56AC46635F9A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{03CFC635-B4D7-47BA-BE47-899A8C5246D0}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
FirewallRules: [{0AD51370-B03B-4EB6-B1CA-F373A60C5731}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
FirewallRules: [{3C039D35-54D1-41E4-AC29-63D8BFBB9D28}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
FirewallRules: [{41AFF1E6-46AA-4CD1-A138-0345A3119C43}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia RECentral\RECentral.exe (AVerMedia TECHNOLOGIES, Inc -> AVerMedia TECHNOLOGIES, Inc.) [Archivo no firmado]
FirewallRules: [{37934605-2DEC-4648-AC5D-A2BE220BD0F2}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia GL310 USB HD Capture Device\AVerMedia GL310 USB HD Capture Device.url () [Archivo no firmado]
FirewallRules: [{386BB480-346C-49BA-86F4-55F3E52606F7}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia GL310 USB HD Capture Device\AVerMedia GL310 USB HD Capture Device.url () [Archivo no firmado]
FirewallRules: [{D74456EC-8FFE-4FC5-A1A9-175813BE0F7A}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia GL310 USB HD Capture Device\AVerMedia GL310 USB HD Capture Device.url () [Archivo no firmado]
FirewallRules: [{DADEC376-253E-49B8-B5BF-E22D85479B6D}] => (Allow) C:\Program Files (x86)\AVerMedia\AVerMedia GL310 USB HD Capture Device\AVerMedia GL310 USB HD Capture Device.url () [Archivo no firmado]
FirewallRules: [{410A1C9F-9DCA-4C00-A166-36ED42647FA3}] => (Allow) C:\Users\darko\AppData\Local\JDownloader 2.0\JDownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{6194AF5E-38CE-44BC-9120-4BA2407EEB01}] => (Allow) C:\Users\darko\AppData\Local\JDownloader 2.0\JDownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{F679A3F5-FF98-41A9-9EB7-C19E9586416F}] => (Allow) C:\Users\darko\AppData\Local\JDownloader 2.0\JDownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{2E2A5172-0433-42DB-B4E4-5211837D980C}] => (Allow) C:\Users\darko\AppData\Local\JDownloader 2.0\JDownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{263638E2-7D94-456F-BCB3-6F1BBA65E327}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [TCP Query User{F4CD9B03-6595-450C-871F-FBBC67249398}C:\program files\dvdfab 10\dvdfab64.mhz] => (Block) C:\program files\dvdfab 10\dvdfab64.mhz (DVDFab Software Inc. -> DVDFab.cn)
FirewallRules: [UDP Query User{751508E7-4A23-4499-BF48-F5B0F27A7D22}C:\program files\dvdfab 10\dvdfab64.mhz] => (Block) C:\program files\dvdfab 10\dvdfab64.mhz (DVDFab Software Inc. -> DVDFab.cn)
==================== Puntos de Restauración =========================
06-05-2020 02:02:54 JRT Pre-Junkware Removal
==================== Dispositivos defectuosos en el Administrador de dispositivos ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Errores del registro de eventos: ========================
Errores de aplicación:
==================
Error: (05/06/2020 02:00:23 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.
Error: (05/06/2020 01:25:20 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa DVDFab64.mhz, versión 10.2.1.7, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 1d70
Hora de inicio: 01d62334238bda71
Hora de finalización: 58
Ruta de acceso de la aplicación: C:\Program Files\DVDFab 10\DVDFab64.mhz
Identificador de informe: aab2e3b9-8f27-11ea-a523-d050991fdade
Error: (05/06/2020 01:22:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DVDFab64.mhz, versión: 10.2.1.7, marca de tiempo: 0x5bbc56a3
Nombre del módulo con errores: DVDFab64.mhz, versión: 10.2.1.7, marca de tiempo: 0x5bbc56a3
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000006fe07b
Id. del proceso con errores: 0xf28
Hora de inicio de la aplicación con errores: 0x01d623327b104a9a
Ruta de acceso de la aplicación con errores: C:\Program Files\DVDFab 10\DVDFab64.mhz
Ruta de acceso del módulo con errores: C:\Program Files\DVDFab 10\DVDFab64.mhz
Id. del informe: 52e4cc16-8f27-11ea-a523-d050991fdade
Error: (05/06/2020 01:00:12 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa DVDFab64.mhz, versión 10.2.1.7, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, compruebe el historial de problemas en el panel de control Centro de actividades.
Identificador de proceso: 1944
Hora de inicio: 01d62330c5bb1bd2
Hora de finalización: 72
Ruta de acceso de la aplicación: C:\Program Files\DVDFab 10\DVDFab64.mhz
Identificador de informe: 2787a3d8-8f24-11ea-a523-d050991fdade
Error: (05/06/2020 12:53:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DVDFab64.mhz, versión: 10.2.1.7, marca de tiempo: 0x5bbc56a3
Nombre del módulo con errores: Plcore.dll, versión: 13.9.903.0, marca de tiempo: 0x5b8cb0a0
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000002b72b5
Id. del proceso con errores: 0x1ca8
Hora de inicio de la aplicación con errores: 0x01d6232fdb790f63
Ruta de acceso de la aplicación con errores: C:\Program Files\DVDFab 10\DVDFab64.mhz
Ruta de acceso del módulo con errores: C:\Program Files\DVDFab 10\Plcore.dll
Id. del informe: 3e7042c5-8f23-11ea-a523-d050991fdade
Error: (05/06/2020 12:52:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DVDFab64.mhz, versión: 10.2.1.7, marca de tiempo: 0x5bbc56a3
Nombre del módulo con errores: Plcore.dll, versión: 13.9.903.0, marca de tiempo: 0x5b8cb0a0
Código de excepción: 0xc000041d
Desplazamiento de errores: 0x00000000002b72b5
Id. del proceso con errores: 0x1fe4
Hora de inicio de la aplicación con errores: 0x01d6232f417a2e74
Ruta de acceso de la aplicación con errores: C:\Program Files\DVDFab 10\DVDFab64.mhz
Ruta de acceso del módulo con errores: C:\Program Files\DVDFab 10\Plcore.dll
Id. del informe: 0768154c-8f23-11ea-a523-d050991fdade
Error: (05/06/2020 12:51:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: DVDFab64.mhz, versión: 10.2.1.7, marca de tiempo: 0x5bbc56a3
Nombre del módulo con errores: Plcore.dll, versión: 13.9.903.0, marca de tiempo: 0x5b8cb0a0
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x00000000002b72b5
Id. del proceso con errores: 0x1fe4
Hora de inicio de la aplicación con errores: 0x01d6232f417a2e74
Ruta de acceso de la aplicación con errores: C:\Program Files\DVDFab 10\DVDFab64.mhz
Ruta de acceso del módulo con errores: C:\Program Files\DVDFab 10\Plcore.dll
Id. del informe: 02bc07e9-8f23-11ea-a523-d050991fdade
Error: (05/05/2020 06:53:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: vlc.exe, versión: 2.2.1.0, marca de tiempo: 0x00000004
Nombre del módulo con errores: libqt4_plugin.dll, versión: 2.2.1.0, marca de tiempo: 0x00020002
Código de excepción: 0x40000015
Desplazamiento de errores: 0x007ca10a
Id. del proceso con errores: 0xb84
Hora de inicio de la aplicación con errores: 0x01d622fda1f88f57
Ruta de acceso de la aplicación con errores: C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
Ruta de acceso del módulo con errores: C:\Program Files (x86)\VideoLAN\VLC\plugins\gui\libqt4_plugin.dll
Id. del informe: f1f04e66-8ef0-11ea-a523-d050991fdade
Errores del sistema:
=============
Error: (05/06/2020 02:04:06 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (05/06/2020 02:04:05 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NVIDIA Display Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (05/06/2020 01:59:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: El servicio HuaweiHiSuiteService64.exe no pudo iniciarse debido al siguiente error:
El sistema no puede encontrar el archivo especificado.
Error: (05/06/2020 01:57:46 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio NVIDIA LocalSystem Container terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 6000 milisegundos: Reiniciar el servicio.
Error: (05/06/2020 01:57:43 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NVIDIA Display Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (05/06/2020 01:57:42 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Intel(R) Capability Licensing Service Interface terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.
Error: (05/06/2020 01:57:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio NVIDIA Stereoscopic 3D Driver Service se terminó de manera inesperada. Esto ha sucedido 1 veces.
Error: (05/06/2020 01:57:42 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio AVerRECentral se terminó de manera inesperada. Esto ha sucedido 1 veces.
==================== Información de la memoria ===========================
BIOS: American Megatrends Inc. P1.20 12/06/2013
Placa base: ASRock H81M-DGS R2.0
Procesador: Intel(R) Core(TM) i3-4150 CPU @ 3.50GHz
Porcentaje de memoria en uso: 78%
RAM física total: 4035.32 MB
RAM física disponible: 871.23 MB
Virtual total: 8068.79 MB
Virtual disponible: 4872.16 MB
==================== Unidades ================================
Drive c: () (Fixed) (Total:465.66 GB) (Free:79.64 GB) NTFS
\\?\Volume{efb152c3-0389-11ea-bb79-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS
==================== MBR & Tabla de particiones ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FC35F96E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==================== Final de Addition.txt =======================Bien… y ahora sigue estos pasos, MUY Importante Realiza una copia de seguridad del registro :
-
Para hacerlo descarga
DelFix.exe(en tu escritorio). -
Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).
-
Atención, ahora marca/selecciona únicamente la casilla
Create registry backup, las demás casillas NO. -
Pulsar en Run.
Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.
Con los demás programas cerrados ve a Inicio Ejecutar y escribe Notepad.exe.
- Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Run: [Opera Browser Assistant] => C:\Users\darko\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\MountPoints2: {77132f40-1ad3-11ea-ac41-d050991fdade} - E:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricción <==== ATENCIÓN
CHR HKLM\SOFTWARE\Policies\Google: Restricción <==== ATENCIÓN
Task: {23FE5A64-CC17-4A1A-977C-1F07C9D7637D} - System32\Tasks\{3FA020EA-FD00-48D6-8566-790A8AAF0DF3} => C:\Windows\system32\pcalua.exe -a "C:\Users\darko\Downloads\Nueva carpeta\Nueva carpeta\CBGHST\cgsetup_en.exe" -d "C:\Users\darko\Downloads\Nueva carpeta\Nueva carpeta\CBGHST"
Task: {3D150EF3-8A9B-4BDE-9444-20EE54118568} - System32\Tasks\{BC024EC4-5258-4794-8DC2-F83952B9AA10} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {40B25001-CA68-42F2-85CE-3B2A3F7EC26C} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat
Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
Task: {B4F3880F-430B-40FC-B65F-75ACA5061A6E} - System32\Tasks\{DDF359B2-A910-4575-B16B-79236EA09C02} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {C1581950-E6B3-4845-B756-CD82DCD82334} - System32\Tasks\{D7B2AA58-A84E-4248-873A-C29775A87FD0} => C:\Windows\system32\pcalua.exe -a C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(3).exe -d C:\Users\darko\Downloads
Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
Task: {D2F9EEE4-0379-42D1-B9F9-31F747C06ECF} - System32\Tasks\{F29356F6-35C4-4206-85B4-74537A1F9555} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Tcpip\..\Interfaces\{FCE1F985-7315-4951-AC7D-42F0DB7A8BF0}: [NameServer] 74.82.42.42,192.168.1.1
Handler: WSISAllmytubechrome - Sin valor CLSID
FF NewTab: Mozilla\Firefox\Profiles\8jw7qeey.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=JD180501&iDate=2020-05-03 10:54:25&bName=&bitmask=0300
FF NewTab: Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 -> hxxps://defaultsearch.co/homepage?hp=1&pId=JD180501&iDate=2020-05-03 10:54:25&bName=&bitmask=0300
FF Plugin: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ningún archivo]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
U4 npcap_wifi; no ImagePath
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
ENDGuárdalo bajo el nombre de FIXLIST.TXT en el escritorio Esto es muy importante.
Nota Es importante que la herramienta FRST.exe(Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.
Y ahora inicia tu equipo desde el Modo Seguro – con funciones de Red, de Windows
-
Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
-
Presionar el botón FIX/Corregir y aguardar a que termine.
-
La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).
Pegar el contenido de este fichero en tu próxima respuesta.
Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.
Saludos.
1 me gusta
Hola buenas noches de nuevo, JavierHF. Muchas gracias por estar de nuevo prestando ayuda
Te pego el reporte que pides. Y ya me dirás si tengo que seguir más pasos después
Resultados de la corrección de Farbar Recovery Scan Tool (x64) Versión: 03-05-2020
Ejecutado por darko (07-05-2020 03:30:59) Run:1
Ejecutado desde C:\Users\darko\Desktop\frstflix
Perfiles cargados: darko (Perfiles disponibles: darko)
Modo de Inicio: Safe Mode (with Networking)
==============================================
fixlist contenido:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22245560 2020-03-19] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\Run: [Opera Browser Assistant] => C:\Users\darko\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\...\MountPoints2: {77132f40-1ad3-11ea-ac41-d050991fdade} - E:\HiSuiteDownLoader.exe
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.129\Installer\chrmstp.exe [2020-04-28] (Google LLC -> Google LLC)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restricci�n <==== ATENCI�N
CHR HKLM\SOFTWARE\Policies\Google: Restricci�n <==== ATENCI�N
Task: {23FE5A64-CC17-4A1A-977C-1F07C9D7637D} - System32\Tasks\{3FA020EA-FD00-48D6-8566-790A8AAF0DF3} => C:\Windows\system32\pcalua.exe -a "C:\Users\darko\Downloads\Nueva carpeta\Nueva carpeta\CBGHST\cgsetup_en.exe" -d "C:\Users\darko\Downloads\Nueva carpeta\Nueva carpeta\CBGHST"
Task: {3D150EF3-8A9B-4BDE-9444-20EE54118568} - System32\Tasks\{BC024EC4-5258-4794-8DC2-F83952B9AA10} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {40B25001-CA68-42F2-85CE-3B2A3F7EC26C} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat
Task: {A1D60D55-A6B8-401B-BC05-2938E02DF2F2} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => d:\program files\windows defender\MpCmdRun.exe
Task: {B4F3880F-430B-40FC-B65F-75ACA5061A6E} - System32\Tasks\{DDF359B2-A910-4575-B16B-79236EA09C02} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Task: {C1581950-E6B3-4845-B756-CD82DCD82334} - System32\Tasks\{D7B2AA58-A84E-4248-873A-C29775A87FD0} => C:\Windows\system32\pcalua.exe -a C:\Users\darko\Downloads\GL310_RECentral_1.3.0.118.2019091701_Drv_3.2801.x.40(3).exe -d C:\Users\darko\Downloads
Task: {C4E8B14A-4159-4C58-BDAD-281DBBFC97E8} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => d:\program files\windows defender\MpCmdRun.exe
Task: {D2F9EEE4-0379-42D1-B9F9-31F747C06ECF} - System32\Tasks\{F29356F6-35C4-4206-85B4-74537A1F9555} => C:\Users\darko\Downloads\MKVcleaver_x64_v0605.exe [5321216 2019-12-12] () [Archivo no firmado]
Tcpip\..\Interfaces\{FCE1F985-7315-4951-AC7D-42F0DB7A8BF0}: [NameServer] 74.82.42.42,192.168.1.1
Handler: WSISAllmytubechrome - Sin valor CLSID
FF NewTab: Mozilla\Firefox\Profiles\8jw7qeey.default -> hxxps://defaultsearch.co/homepage?hp=1&pId=JD180501&iDate=2020-05-03 10:54:25&bName=&bitmask=0300
FF NewTab: Mozilla\Firefox\Profiles\n8mk66c8.default-release-1576608003361 -> hxxps://defaultsearch.co/homepage?hp=1&pId=JD180501&iDate=2020-05-03 10:54:25&bName=&bitmask=0300
FF Plugin: @microsoft.com/GENUINE -> disabled [Ning�n archivo]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Ning�n archivo]
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN -> VideoLAN)
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
S2 HuaweiHiSuiteService64.exe; "C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe" -/service [X]
U4 npcap_wifi; no ImagePath
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************
Error: El punto de restauración solamente puede ser creado en modo normal.
Procesos cerrados correctamente.
"HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning" => eliminado correctamente
"HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Opera Browser Assistant" => eliminado correctamente
HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{77132f40-1ad3-11ea-ac41-d050991fdade} => eliminado correctamente
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => eliminado correctamente
HKLM\SOFTWARE\Policies\Mozilla => eliminado correctamente
HKLM\SOFTWARE\Policies\Google => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23FE5A64-CC17-4A1A-977C-1F07C9D7637D}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23FE5A64-CC17-4A1A-977C-1F07C9D7637D}" => eliminado correctamente
C:\Windows\System32\Tasks\{3FA020EA-FD00-48D6-8566-790A8AAF0DF3} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{3FA020EA-FD00-48D6-8566-790A8AAF0DF3}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3D150EF3-8A9B-4BDE-9444-20EE54118568}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3D150EF3-8A9B-4BDE-9444-20EE54118568}" => eliminado correctamente
C:\Windows\System32\Tasks\{BC024EC4-5258-4794-8DC2-F83952B9AA10} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{BC024EC4-5258-4794-8DC2-F83952B9AA10}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{40B25001-CA68-42F2-85CE-3B2A3F7EC26C}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40B25001-CA68-42F2-85CE-3B2A3F7EC26C}" => eliminado correctamente
C:\Windows\System32\Tasks\npcapwatchdog => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\npcapwatchdog" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A1D60D55-A6B8-401B-BC05-2938E02DF2F2}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A1D60D55-A6B8-401B-BC05-2938E02DF2F2}" => eliminado correctamente
C:\Windows\System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Defender\MP Scheduled Scan" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B4F3880F-430B-40FC-B65F-75ACA5061A6E}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4F3880F-430B-40FC-B65F-75ACA5061A6E}" => eliminado correctamente
C:\Windows\System32\Tasks\{DDF359B2-A910-4575-B16B-79236EA09C02} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DDF359B2-A910-4575-B16B-79236EA09C02}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C1581950-E6B3-4845-B756-CD82DCD82334}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C1581950-E6B3-4845-B756-CD82DCD82334}" => eliminado correctamente
C:\Windows\System32\Tasks\{D7B2AA58-A84E-4248-873A-C29775A87FD0} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D7B2AA58-A84E-4248-873A-C29775A87FD0}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C4E8B14A-4159-4C58-BDAD-281DBBFC97E8}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C4E8B14A-4159-4C58-BDAD-281DBBFC97E8}" => eliminado correctamente
C:\Windows\System32\Tasks\Microsoft\Windows Defender\MpIdleTask => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows Defender\MpIdleTask" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D2F9EEE4-0379-42D1-B9F9-31F747C06ECF}" => eliminado correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D2F9EEE4-0379-42D1-B9F9-31F747C06ECF}" => eliminado correctamente
C:\Windows\System32\Tasks\{F29356F6-35C4-4206-85B4-74537A1F9555} => movido correctamente
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{F29356F6-35C4-4206-85B4-74537A1F9555}" => eliminado correctamente
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FCE1F985-7315-4951-AC7D-42F0DB7A8BF0}\\NameServer" => eliminado correctamente
HKLM\Software\Classes\PROTOCOLS\Handler\WSISAllmytubechrome => eliminado correctamente
Handler: WSISAllmytubechrome - Sin valor CLSID => no pudo ser eliminado.: incorrect path.
"Firefox newtab" => eliminado correctamente
"Firefox newtab" => eliminado correctamente
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => eliminado correctamente
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => eliminado correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN" => no encontrado
C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll => movido correctamente
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN" => no encontrado
"C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll" => no encontrado
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => eliminado correctamente
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => eliminado correctamente
HKLM\System\CurrentControlSet\Services\HuaweiHiSuiteService64.exe => eliminado correctamente
HuaweiHiSuiteService64.exe => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\npcap_wifi => eliminado correctamente
npcap_wifi => servicio eliminado correctamente
HKLM\System\CurrentControlSet\Services\VGPU => eliminado correctamente
VGPU => servicio eliminado correctamente
C:\Windows\System32\Drivers\etc\hosts => movido correctamente
Hosts restaurado correctamente.
========= RemoveProxy: =========
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
"HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => eliminado correctamente
"HKU\S-1-5-21-4249422975-1014931290-1555897128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => eliminado correctamente
========= Final 1 RemoveProxy: =========
========= netsh winsock reset =========
El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.
========= Final 1 CMD: =========
========= ipconfig /renew =========
Configuraci¢n IP de Windows
Adaptador de Ethernet Conexi¢n de rea local:
Sufijo DNS espec¡fico para la conexi¢n. . : home
V¡nculo: direcci¢n IPv6 local. . . : fe80::1086:fa0d:f4f4:c7c4%11
Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.44
M scara de subred . . . . . . . . . . . . : 255.255.255.0
Puerta de enlace predeterminada . . . . . : 192.168.1.1
Adaptador de t£nel isatap.home:
Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS espec¡fico para la conexi¢n. . :
========= Final 1 CMD: =========
========= ipconfig /flushdns =========
Configuraci¢n IP de Windows
Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.
========= Final 1 CMD: =========
========= bitsadmin /reset /allusers =========
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
Unable to connect to BITS - 0x8007042c
No se puede iniciar el servicio o grupo de dependencia.
========= Final 1 CMD: =========
========= netsh advfirewall reset =========
Aceptar
========= Final 1 CMD: =========
========= netsh advfirewall set allprofiles state ON =========
Aceptar
========= Final 1 CMD: =========
========= netsh int ipv4 reset =========
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.
========= Final 1 CMD: =========
========= netsh int ipv6 reset =========
No hay valores configurados por el usuario para restablecer.
========= Final 1 CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 12582912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 25217699 B
Java, Flash, Steam htmlcache => 1172 B
Windows/system/drivers => 2315039 B
Edge => 0 B
Chrome => 165012 B
Firefox => 1057769195 B
Opera => 150778 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
systemprofile32 => 82890 B
LocalService => 82890 B
NetworkService => 82890 B
darko => 6688442 B
UpdatusUser => 6688442 B
RecycleBin => 4320165954 B
EmptyTemp: => 5.1 GB datos temporales eliminados.
================================
El sistema necesita reiniciarse.
==== Final 1 Fixlog 03:32:07 ====
Perfecto. 
Y como sigue el problema inicialmente planteado en este tema…??
1 me gusta
Pues ha mejorado mucho el tema de cierre de programas… Lo ha hecho una sola vez y después de estar 1 hora abierto. Cuando antes era a los 5 minutos, a los 10, 20. Cuabdo quería… Hoy he hecho una prueba y ha estado un maximo de 3 horas sin cerrarse solo…
Así que muchísimas gracias, Javier, por tu ayuda y solucionarme el problema
Hola.
Cuando se cierra es por ej. por tener muchos programas abiertos…??
Lo hace con cualquier programas o con algunos en especial…??
Tienes actualizado al máximo tu sistema operativo…??
Verificarlo desde Windows Update hasta que compruebes que NO queda nada. 
1 me gusta
Hola de nuevo, javier
No. solo el programa que abro, no tenía más abriertos… Pero como te comentaba ya no ocurre… De momento solo una vez se ha cerró ayer…He vuelto a probar tenerlo un par de horas más abiertto y no se ha cerrado, cuando antes era como máximo 20/40min que se cerraba de repente o incluso a los 5 minutos.
Si me volviera a pasar si es posible escribiría en este mismo tema
Mil gracias de nuevo por tu atención y sobre todo por solucionarme el problema
Hola @Kovak.
Que un programa se cierre solo, así… sin mas ni mas, 
es bastante raro, incluso por exceso de calor en el equipo lo mas normal es que se bloquee TODO el equipo y NO se pueda hacer nada o haya incluso que APAGAR el equipo de forma forzada. 
Incluso por las pocas infeccionas que tenias, tampoco es normal que un programa se cierre sin mas, es algo bastante atípico.
Si te parece, antes de terminar el tema, podemos hacer una verificación de tu disco duro para saber en que situacion lo tienes.
Para hacerlo sigue el 3er. MÉTODO: descrito en esta Faq de ayuda ¿Cómo usar CHKDSK para realizar una comprobación del disco?, que es válida también para un Windows 10.
Una vez terminado el proceso, que puede/debe durar bastante rato, debes poner el informe que se habrá guardado por parte de Windows y que tienes que encontrar siguiendo estos pasos ¿Cuándo y cómo usar el visor de eventos (eventvwr.msc)?
Fíjate bien en como es el informe que viene en ese tema, para que busques algo similar y NO pongas cualquier otra cosa.
Nos pones el informe y comentas como sigue el problema del equipo.
Saludos.
1 me gusta
Lo haré. Hoy no podré pero mañana si. Muchas gracias y hasta mañana
1 me gusta
Perfecto.
Por aquí estaremos. 