Solicito una revisión del pc


#1

Hola, me gustaría realizar una revisión completa de la PC por spyware, virus etc.


#2

Hola de nuevo

Realiza los siguientes pasos, , sin cambiar el orden

1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware,

Manual Malwarebytes, para que sepas usarlo y configurarlo.

  • Realiza un Análisis Personalizado,marcando Todas las casillas de la derecha y de la Izquierda actualizando si te lo pide.
  • Pulsar en “Eliminar Seleccionados” para enviarlo a la cuarentena y Reinicias el sistema.
  • Para acceder posteriormente al informe del análisis : Informes >> Registro de análisis >> Pulsar en >> Exportar >> Copiar al Portapapeles, y lo pegas en tu respuesta

2) Descarga Adwcleaner en el escritorio.

  • Desactiva tu antivirus :arrow_forward:Como deshabilitar temporalmente un antivirus y cualquier programa de seguridad.

  • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Pulsar en el botón Analizar Ahora, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Iniciar Reparacion.

  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.

  • Si no encuentra nada, pulsamos “Omitir Reparación

  • El log lo encontramos en la pestaña “Informes”, volviendo a abrir el programa, si es necesario o en"C:\AdwCleaner\Logs\AdwCleaner[C0].txt"

Puedes mirar su manual >> Manual de Adwcleaner

3)* Desactiva Temporalmente tu antivirus y cualquier programa de seguridad.

  • Descarga a Tu Escritorio >> Esto es muy importante<<.,Fabar Recovery Scan Tool, considerando la versión adecuada para tu equipo. (32 o 64 bits) :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits?

  • Doble clic para ejecutar Frst.exe. En la ventana del Disclaimer, presiona Yes.

  • En la nueva ventana que se abre, presiona el botón Scan y espera a que concluya el análisis.

  • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, que estarán grabados en Tu escritorio.

En Tu próxima respuesta, copias y pegas los dos reportes Frst.txt y Addition.txt de FRST

Nota: Si el/los reportes solicitados no entraran en una sola respuesta porque superan la cantidad de caracteres permitidos, puedes utilizar dos o mas respuestas para pegarlos completamente.


#3

Hola, aca pego reporte de

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 25/10/18
Hora del análisis: 11:34
Archivo de registro: 2445eba2-d863-11e8-8cf6-00ffefe8542a.json

-Información del software-
Versión: 3.6.1.2711
Versión de los componentes: 1.0.463
Versión del paquete de actualización: 1.0.7525
Licencia: Premium

-Información del sistema-
SO: Windows 7 Service Pack 1
CPU: x64
Sistema de archivos: NTFS
Usuario: Jose-PC\Jose

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 259066
Amenazas detectadas: 0
Amenazas en cuarentena: 0
Tiempo transcurrido: 1 min, 11 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 0
(No hay elementos maliciosos detectados)

Módulo: 0
(No hay elementos maliciosos detectados)

Clave del registro: 0
(No hay elementos maliciosos detectados)

Valor del registro: 0
(No hay elementos maliciosos detectados)

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 0
(No hay elementos maliciosos detectados)

Archivo: 0
(No hay elementos maliciosos detectados)

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end) 

#4
# -------------------------------
# Malwarebytes AdwCleaner 7.2.4.0
# -------------------------------
# Build:    09-25-2018
# Database: 2018-10-23.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    10-25-2018
# Duration: 00:00:00
# OS:       Windows 7 Ultimate
# Cleaned:  1
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\Users\Jose\AppData\Roaming\DRPSu

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1293 octets] - [25/10/2018 11:45:36]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########

#5
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Ran by Jose (25-10-2018 12:03:08)
Running from C:\Users\Jose\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2015-07-21 20:47:44)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrador (S-1-5-21-4058849917-871124441-1829732832-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-4058849917-871124441-1829732832-1005 - Limited - Enabled)
Invitado (S-1-5-21-4058849917-871124441-1829732832-501 - Limited - Enabled)
Jose (S-1-5-21-4058849917-871124441-1829732832-1000 - Administrator - Enabled) => C:\Users\Jose

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Malwarebytes (Disabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: Kaspersky Internet Security (Disabled - Up to date) {0AB30972-4BAC-7BEE-CBCA-B8F9E68797D8}
AS: Kaspersky Internet Security (Disabled - Up to date) {B1D2E896-6D96-7460-F17A-838B9D00DD65}
AS: Malwarebytes (Disabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {32888857-01C3-7AB6-E095-11CC1854D0A3}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

. . (HKLM\...\{657DF44E-16FB-46D9-A2E6-476E54F694D3}) (Version: 7.1 - Intel) Hidden
. . . (HKLM-x32\...\{94EBC126-1FC8-4528-859F-591460B2E7C2}) (Version: 3.4.0.4 - Intel) Hidden
7-Zip 16.04 (x64) (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Flash Player 31 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Flash Player 31 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (HKLM\...\{20AB389B-8602-403C-B19B-F0A1D6C510A5}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.8.3 - Arduino LLC)
Asesor de actualizaciones de Windows 7 (HKLM-x32\...\{E45FA4DF-3F59-4250-92B9-8CB10F1D22C3}) (Version: 2.0.5000.0 - Microsoft Corporation)
ATI AVIVO64 Codecs (HKLM\...\{64914CE9-CBF8-6475-E025-826938D7D7D7}) (Version: 11.6.0.10209 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{24732103-FE2A-D954-AFCC-7824D77B7CC6}) (Version: 3.0.816.0 - ATI Technologies, Inc.)
ATI Problem Report Wizard (HKLM\...\{506DB9B0-4372-4C70-36AA-3AF7274F5CAB}) (Version: 3.0.816.0 - ATI Technologies) Hidden
aTube Catcher versión 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Betternet for Windows (HKLM-x32\...\{2E77104D-96E1-4A9C-86F2-C7CF4C703900}) (Version: 3.9.0.0 - Betternet Technologies Inc.)
Bonjour (HKLM-x32\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.31 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.5.5767 - CDBurnerXP)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version:  - DownloadHelper)
Data Lifeguard Diagnostic for Windows 1.28 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version:  - Western Digital Corporation)
Elevated Installer (HKLM-x32\...\{6E257EB0-5EFF-416D-82D4-592924566BB4}) (Version: 6.5.1.0 - Garmin Ltd or its subsidiaries) Hidden
Emergency Download Driver (HKLM-x32\...\{3F0F5AB4-C9CE-4226-8393-E9CFF8369D9D}) (Version: 1.1.16.1526 - Microsoft)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Evince 2.32.0.145 (HKLM-x32\...\{AA38CC00-F12C-495E-AF00-7EE413D3BFB2}) (Version: 2.32.0.145 - (Custom build))
FormatFactory 2.70 (HKLM-x32\...\FormatFactory) (Version: 2.70 - Free Time)
Garmin Express (HKLM-x32\...\{3e534d41-dcc4-4f51-9858-70dd42beb3d5}) (Version: 6.5.1.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{E1C18A5C-63D7-4DC5-977F-5B4BAB4169D9}) (Version: 6.5.1.0 - Garmin Ltd or its subsidiaries) Hidden
Git version 2.14.1 (HKLM\...\Git_is1) (Version: 2.14.1 - The Git Development Community)
GL USB2.0 UVC Camera Device (HKLM-x32\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 1.0.0.0 - Genesys Logic)
Glary Utilities 5.107 (HKLM-x32\...\Glary Utilities 5) (Version: 5.107.0.132 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 70.0.3538.67 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HL-1110 series (HKLM-x32\...\{4F2442B7-A89E-42A4-8F0E-6937499855CA}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
HP Support Solutions Framework (HKLM-x32\...\{1B27BDCF-4A5B-4D70-9590-7D50247DC1D4}) (Version: 12.0.30.81 - Hewlett-Packard Company)
HP USB Disk Storage Format Tool (HKLM-x32\...\{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}) (Version:  - )
HydraVision (HKLM-x32\...\{914A8694-9CDC-1F8E-4D21-D1013CDB04CD}) (Version: 4.2.188.0 - ATI Technologies Inc.) Hidden
Intel(R) Computing Improvement Program (HKLM\...\{F6B5BD59-21F0-47F8-A6C6-63BAEB1A6569}) (Version: 2.1.03720 - Intel Corporation)
Intel(R) Desktop Utilities (HKLM-x32\...\{F01CBA59-B5BD-4608-A834-1CBE8C292A71}) (Version: 1.0.0 - Intel Corporation)
Intel(R) Integrator Assistant (HKLM-x32\...\{D1A35687-AEA9-422C-B237-FC4F8136B6F6}) (Version: 1.0.0 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel(R) Network Connections 15.6.25.0 (HKLM\...\PROSetDX) (Version: 15.6.25.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
Intel® Driver & Support Assistant (HKLM-x32\...\{917c2887-4ed0-4389-9b51-616905bcf34f}) (Version: 3.4.0.4 - Intel)
iSkysoft Helper Compact 2.5.2 (HKLM-x32\...\{9BF12010-8799-41A5-A671-E9CFDE9E79F3}_is1) (Version: 2.5.2 - iSkysoft)
Java 8 Update 191 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180191F0}) (Version: 8.0.1910.12 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Kaspersky Internet Security (HKLM-x32\...\{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{5AAE61FF-858E-453E-B8F3-944618149975}) (Version: 18.0.0.405 - Kaspersky Lab)
Kaspersky Secure Connection (HKLM-x32\...\{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lenovo EasyCamera (HKLM-x32\...\{E8266049-8C7B-4A09-9E11-8BD100E0076A}) (Version: 8.0.1.2379 - GenesysLogic)
Lumia UEFI Blue Driver (HKLM-x32\...\{9D2A75FE-8CE1-4297-AEC1-A097D47BACE9}) (Version: 1.1.10.1526 - Microsoft)
Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Manager (HKLM-x32\...\{218A9668-3355-48AA-BFE5-6957CA4A5A4C}) (Version: 5.0.22.32425 - 2017 pdfforge GmbH. All rights reserved) Hidden
Measurement versión 2.0 (HKLM-x32\...\{D694A790-B0B4-43A3-9482-2E7AC0B95C7C}_is1) (Version: 2.0 - )
MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info)
Microsoft .NET Framework 4.7.2 (español) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MiniTool Partition Wizard Free 9.0 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Solution Ltd.)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 63.0 (x64 es-ES) (HKLM\...\Mozilla Firefox 63.0 (x64 es-ES)) (Version: 63.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 63.0.0.6865 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Notepad++ (64-bit x64) (HKLM\...\Notepad++) (Version: 7.5.8 - Notepad++ Team)
OpenVPN 2.3.12-I602  (HKLM-x32\...\OpenVPN) (Version: 2.3.12-I602 - )
Panda Cloud Cleaner (HKLM-x32\...\{92B2B132-C7F0-43DC-921A-4493C04F78A4}_is1) (Version: 1.1.10 - Panda Security)
Paquete de controladores de Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Paquete de controladores de Windows - Silicon Laboratories Inc. (silabser) Ports  (05/23/2018 6.7.6.2130) (HKLM\...\C9C3E5CCB43EEF685DD0E2BB4263DDC88C9B3834) (Version: 05/23/2018 6.7.6.2130 - Silicon Laboratories Inc.)
Paquete de controladores de Windows - Silicon Laboratories Inc. (silabser) Ports  (09/19/2016 6.7.4.261) (HKLM\...\9E2C239D42290B984A9E2B350A67AF8BC8BD11B9) (Version: 09/19/2016 6.7.4.261 - Silicon Laboratories Inc.)
Paquete de controladores de Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Paquete de idioma de Microsoft Visual Studio 2010 Tools para Office Runtime (x64) - ESN (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - ESN) (Version: 10.0.50903 - Microsoft Corporation)
PDF Architect 5 (HKLM-x32\...\PDF Architect 5) (Version: 5.0.22.32360 - pdfforge GmbH)
PDF Architect 5 Create Module (HKLM\...\{7A5C9B23-00FB-479B-9240-8DCBD3CDF7DC}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 Edit Module (HKLM\...\{422024FF-15CA-4199-8DAF-DD34A8BA85DD}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
PDF Architect 5 View Module (HKLM\...\{AD72FB9B-80C6-461D-B099-9DD76A62115E}) (Version: 5.0.22.32126 - pdfforge GmbH) Hidden
Proteus 8 Professional (HKLM-x32\...\{94728D65-0F75-418B-B7D8-C7FEC18106DC}) (Version: 8.2.18911.0 - Labcenter Electronics)
Python 2.7.14 (64-bit) (HKLM\...\{0398A685-FD8D-46B3-9816-C47319B0CF5f}) (Version: 2.7.14150 - Python Software Foundation)
QUICKCross 2016 (HKLM-x32\...\QUICKCross 2016) (Version: 00.00.00.7 - NTE Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8549 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
Samsung Kies (HKLM-x32\...\{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (HKLM-x32\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Should I Remove It (HKLM-x32\...\{4E62123C-4C0D-4123-A8A2-C0103B92D7EA}) (Version: 1.0.4 - Reason Software Company Inc.) Hidden
Should I Remove It (HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version:  - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM-x32\...\{F5B81F5D-7226-44E6-850F-F07C5070E234}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
SpywareBlaster 5.5 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.5.0 - BrightFort LLC)
SSD Tweaker version 3.6.0 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 3.6.0 - Elpamsoft.com)
TAP-Windows 9.21.2 (HKLM\...\TAP-Windows) (Version: 9.21.2 - )
UltraISO Premium V9.65 (HKLM-x32\...\UltraISO_is1) (Version:  - )
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version:  - DownloadHelper)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
WinRAR 5.30 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)
WinUsb CoInstallers (HKLM-x32\...\{9755918A-CDF8-4F1E-8453-6359CF1A330A}) (Version: 1.1.12.1526 - Microsoft)
WinUSB Compatible ID Drivers (HKLM-x32\...\{A4A0B236-6046-4CAB-8177-1EAF61112C75}) (Version: 1.1.11.1526 - Microsoft)
WinUSB Drivers ext (HKLM-x32\...\{29BAAF65-09E5-4F52-8D15-2FAF2E23A8DC}) (Version: 1.1.24.1544 - Microsoft)
WMV9/VC-1 Video Playback (HKLM\...\{8469DB14-7283-7EAE-E52B-2FAC249D8E1A}) (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.3) (Version: 1.3.3 - Xvid Team)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => F:\Todos los Programas que se instala en el C\Notepad++\NppShell_06.dll [2017-06-18] ()
ContextMenuHandlers1: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => F:\Todos los Programas que se instala en el C\FormatFactory\ShellEx64_100.dll [2011-06-17] (Free Time)
ContextMenuHandlers1: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => F:\Todos los Programas que se instala en el C\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers1: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2018-10-24] (AO Kaspersky Lab)
ContextMenuHandlers1: [PDFArchitect5_ManagerExt] -> {00B7B69F-6774-4906-9C7F-7D117A3644A9} => C:\Program Files\PDF Architect 5\creator-context-menu.dll [2017-02-10] (pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} =>  -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers2: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => F:\Todos los Programas que se instala en el C\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers2: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2018-10-24] (AO Kaspersky Lab)
ContextMenuHandlers2: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => F:\Todos los Programas que se instala en el C\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers4: [FormatFactoryShell] -> {A3777921-CFD3-4A6B-89BF-08E6B95716E8} => F:\Todos los Programas que se instala en el C\FormatFactory\ShellEx64_100.dll [2011-06-17] (Free Time)
ContextMenuHandlers4: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2018-10-24] (AO Kaspersky Lab)
ContextMenuHandlers4: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => F:\Todos los Programas que se instala en el C\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2011-02-09] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2016-10-04] (Igor Pavlov)
ContextMenuHandlers6: [Glary Utilities] -> {B3C418F8-922B-4faf-915E-59BC14448CF7} => F:\Todos los Programas que se instala en el C\Glary Utilities 5\x64\ContextHandler.dll [2018-03-02] (Glarysoft Ltd)
ContextMenuHandlers6: [Kaspersky Anti-Virus 18.0.0] -> {FF48AD48-74C7-4260-B385-FAEB80947450} => C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\ShellEx.dll [2018-10-24] (AO Kaspersky Lab)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [UltraISO] -> {AD392E40-428C-459F-961E-9B147782D099} => F:\Todos los Programas que se instala en el C\UltraISO\isoshl64.dll [2014-01-02] (EZB Systems, Inc.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext64.dll [2015-11-18] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files (x86)\WinRAR\rarext.dll [2015-11-18] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {017DDB35-7D24-4401-BD8D-8205EA68F5E6} - System32\Tasks\GU5SkipUAC => F:\Todos los Programas que se instala en el C\Glary Utilities 5\Integrator.exe [2018-10-14] (Glarysoft Ltd)
Task: {053AE72C-B916-4A0F-8FE7-5340F463A7E3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-06-13] (Piriform Ltd)
Task: {09E6272D-9959-40E3-83D6-CD6259F21DCE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-10-16] (Google Inc.)
Task: {0C4333BA-907A-455A-8E4B-44779B92C10C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_pepper.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {0D142BD9-769A-4CE8-9CE3-DB6FDC3DB714} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {158EF63B-51A6-44AC-8D03-1E56F490F616} - System32\Tasks\{CCE2FD2A-D33E-49CE-8F44-9A7019730C12} => C:\Windows\system32\pcalua.exe -a J:\setup.exe -d J:\
Task: {1CE2612E-7D99-425A-AD27-07C5DC2A0DA4} - System32\Tasks\{E5DD8FE7-9EC9-4CBA-926D-72814781BC61} => F:\Todos los Programas que se instala en el C\Truco XP\Truco.exe [2006-04-29] ()
Task: {363AB4A3-6AEB-46A0-8227-DAD82299AE6E} - System32\Tasks\{670187EB-C333-4CDF-B02C-958E42914F22} => F:\Todos los Programas que se instala en el C\Truco XP\Truco.exe [2006-04-29] ()
Task: {3EA59D83-6448-4219-AA97-C5135BA29C5F} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {53FB2123-45E8-42DC-BAD8-CF56FA53849E} - System32\Tasks\Games\UpdateCheck_S-1-5-21-4058849917-871124441-1829732832-1000
Task: {60CB725A-4B20-4802-B7F2-683AE0700029} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-10-16] (Google Inc.)
Task: {78D87531-A6A6-4EE0-AF19-2486160D8017} - System32\Tasks\DriverEasy Scheduled Scan => F:\Todos los Programas que se instala en el C\DriverEasy\DriverEasy.exe
Task: {80381E8E-18F1-4C3D-A838-1A6101A7C7FA} - System32\Tasks\{DA91F2BA-C6AF-444F-B24F-CB99D52C221C} => C:\Windows\system32\pcalua.exe -a "F:\Descargas\pcbWIZARD BY speed technology\pcb\LivewirePCBWizard.exe" -d "F:\Descargas\pcbWIZARD BY speed technology\pcb"
Task: {89F625A4-EEF9-49BE-A647-497D0E14CD93} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-10-09] (Adobe Systems Incorporated)
Task: {9A1A2878-C086-493C-AF10-DEFA430BE40D} - System32\Tasks\{FBC40554-2931-4568-9C62-36A76471526D} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {9AE9E04B-8503-46C5-91C3-9D203DDB4144} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {9D41080F-BA0D-4778-8146-1BE4ABED1B22} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [2017-07-13] (Intel Corporation)
Task: {A57EB850-D42C-440F-A1D2-C8C4ABF34F44} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS.exe [2016-03-04] ()
Task: {B3657795-763E-4A39-9FD7-06276CC6F4B9} - System32\Tasks\GarminUpdaterTask => F:\Todos los Programas que se instala en el C\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2018-06-06] ()
Task: {BE562BBB-22DB-49E4-BB34-D55FBAC35E64} - System32\Tasks\{A7F68CAD-6866-4F51-8FBE-4E5AE48E0263} => C:\Windows\system32\pcalua.exe -a C:\Users\Jose\Desktop\TrucoXP-1.03-win32.exe -d C:\Users\Jose\Desktop
Task: {CB8B30FA-9DFB-4CA3-922D-FF09D9B51C59} - System32\Tasks\{9E9ABB0A-5485-4986-9700-85EED780C38B} => C:\Windows\system32\pcalua.exe -a "C:\Users\Jose\Desktop\Nueva carpeta\descompresor.exe" -d "C:\Users\Jose\Desktop\Nueva carpeta"
Task: {D09D4837-2D7C-4E2E-BBEC-AD0FFA17EF4C} - System32\Tasks\{1DBCD937-9ECB-4154-A8A7-F315C85DB3D5} => F:\Todos los Programas que se instala en el C\Truco XP\Truco.exe [2006-04-29] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\DriverEasy Scheduled Scan.job => F:\Todos los Programas que se instala en el C\DriverEasy\DriverEasy.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


ShortcutWithArgument: C:\Users\Jose\Desktop\Programas\Download Intel(R) Desktop Utilities.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.intel.com/go/idu/
ShortcutWithArgument: C:\Users\Jose\Desktop\Programas\Download Intel(R) Integrator Assistant.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.intel.com/go/iia/

==================== Loaded Modules (Whitelisted) ==============

2013-09-05 00:17 - 2013-09-05 00:17 - 004300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2017-06-18 18:44 - 2017-06-18 18:44 - 000230064 _____ () F:\Todos los Programas que se instala en el C\Notepad++\NppShell_06.dll
2016-12-14 14:24 - 2014-03-11 15:15 - 000069632 _____ () C:\Program Files (x86)\GLPCCamera\monitorpad.exe
2011-02-09 21:53 - 2011-02-09 21:53 - 000243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2017-05-08 10:35 - 2017-05-08 10:35 - 000325632 _____ () F:\Todos los Programas que se instala en el C\Garmin\Device Interaction Service\GpsImgWrapper.dll
2018-06-06 14:31 - 2018-06-06 14:31 - 000073216 _____ () F:\Todos los Programas que se instala en el C\Garmin\Device Interaction Service\FixBootSector.dll
2016-11-27 11:57 - 2016-10-08 16:59 - 001506304 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\DAQExp.dll
2016-11-27 11:57 - 2016-07-21 10:54 - 000137728 _____ () C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\CBSCreateVC.dll
2017-08-09 20:42 - 2009-02-27 16:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2018-10-11 09:24 - 2018-10-11 09:24 - 000169984 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\ca9f8d84da81f851f02ed20652d58237\IsdiInterop.ni.dll
2015-07-21 17:53 - 2010-09-13 18:28 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [183]
AlternateDataStreams: C:\ProgramData\TEMP:587F3582 [344]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [125]
AlternateDataStreams: C:\ProgramData\TEMP:72A1B66A [228]
AlternateDataStreams: C:\Users\Jose\Desktop\Jose - Tablas de Calendario y sueldo:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Public\AppData:CSM [221]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7936 more sites.

IE trusted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\localhost -> localhost
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\1-2005-search.com -> www.1-2005-search.com

There are 12753 more sites.

#6

Segunda parte:

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2016-08-15 13:33 - 2018-10-15 18:12 - 000454557 ____R C:\Windows\system32\Drivers\etc\hosts

127.0.0.1	www.007guard.com
127.0.0.1	007guard.com
127.0.0.1	008i.com
127.0.0.1	www.008k.com
127.0.0.1	008k.com
127.0.0.1	www.00hq.com
127.0.0.1	00hq.com
127.0.0.1	010402.com
127.0.0.1	www.032439.com
127.0.0.1	032439.com
127.0.0.1	www.0scan.com
127.0.0.1	0scan.com
127.0.0.1	1000gratisproben.com
127.0.0.1	www.1000gratisproben.com
127.0.0.1	1001namen.com
127.0.0.1	www.1001namen.com
127.0.0.1	100888290cs.com
127.0.0.1	www.100888290cs.com
127.0.0.1	www.100sexlinks.com
127.0.0.1	100sexlinks.com
127.0.0.1	10sek.com
127.0.0.1	www.10sek.com
127.0.0.1	www.1-2005-search.com
127.0.0.1	1-2005-search.com
127.0.0.1	123fporn.info
127.0.0.1	www.123fporn.info
127.0.0.1	www.123haustiereundmehr.com
127.0.0.1	123haustiereundmehr.com
127.0.0.1	123moviedownload.com
127.0.0.1	www.123moviedownload.com

There are 15602 more lines.


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4058849917-871124441-1829732832-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Jose\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 200.49.130.40 - 200.42.4.199
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{0C4A7054-D61C-4B0B-9390-F3908A67605D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A074C67B-CF47-4AAA-BBB0-A578CB9E781E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{DBD78B99-B8DD-4DA0-88EB-08B14C976E54}] => (Allow) %ProgramFiles%\Zune\Zune.exe
FirewallRules: [{1BC04884-DAA4-4022-907F-4940CC53AD7D}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{3A1A113A-F456-47A2-B945-4CDCE5A693A9}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{8DFCFBEC-BA6E-4D65-8E36-75F0B36882BB}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{44ADDE4B-1942-42EB-A00C-4FF8FC4C1FA7}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{DCF7454B-A574-462F-9807-14248D35F320}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{E28D4FAB-59CD-4EC9-8CC0-5A2BDEA49F26}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{2017AD4A-2C69-4EE1-80C6-C2C809DD3D75}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{5F9941AE-7246-4DA1-9484-D6BEFE27FB36}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{9FC5D563-A055-4A8B-BC76-E022441D924B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{013E3FDB-FA18-4F16-B2E8-0239A9E6440B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{36FCC961-2E95-4DB4-9F34-3EE65330C5F3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{ADBB98EE-14B2-415F-96E7-7F7E6C8008F8}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{05F61BE0-931A-43F9-9D46-EB1BBD25A7B8}] => (Allow) C:\Program Files (x86)\Labcenter Electronics\Proteus 8 Professional\BIN\\PDS.EXE
FirewallRules: [{F4ABC5F0-109A-445F-A5BB-6A48A4760876}] => (Allow) C:\Program Files (x86)\Labcenter Electronics\Proteus 8 Professional\BIN\\PDS.EXE
FirewallRules: [{3AFD5CBB-B2CF-4CFE-B911-0FBFCAE36155}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

14-10-2018 09:21:27 Windows Update
18-10-2018 08:13:18 Windows Update
19-10-2018 11:49:41 DriverPack 17.7.117
19-10-2018 11:57:49 DriverPack 17.7.117
21-10-2018 10:27:24 Windows Update

==================== Faulty Device Manager Devices =============

Name: TAP-Windows Adapter V9
Description: TAP-Windows Adapter V9
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/25/2018 11:54:32 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Error al generar el contexto de activación para "F:\Descargas\esetsmartinstaller_esn.exe". Error en el archivo de manifiesto o directiva "" en la línea .
Una versión de componente requerida por la aplicación está en conflicto con la versión de otro componente activo.
Los componentes en conflicto son:.
Componente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Componente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (10/25/2018 11:50:28 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: malwarebytes_assistant.exe, versión: 3.1.0.1614, marca de tiempo: 0x5b9bcc2c
Nombre del módulo con errores: malwarebytes_assistant.exe, versión: 3.1.0.1614, marca de tiempo: 0x5b9bcc2c
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x0000bad2
Id. del proceso con errores: 0x1ed0
Hora de inicio de la aplicación con errores: 0x01d46c72104be0cb
Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe
Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\malwarebytes_assistant.exe
Id. del informe: 4f68d44d-d865-11e8-bac0-e069959ace76

Error: (10/25/2018 11:48:26 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/25/2018 06:42:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: mbamtray.exe, versión: 3.1.0.1614, marca de tiempo: 0x5b9bcc06
Nombre del módulo con errores: Qt5Core.dll, versión: 5.11.1.0, marca de tiempo: 0x5b9bc256
Código de excepción: 0xc0000005
Desplazamiento de errores: 0x001b91fe
Id. del proceso con errores: 0x2080
Hora de inicio de la aplicación con errores: 0x01d46c470c879d88
Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Ruta de acceso del módulo con errores: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Id. del informe: 4c0bbe19-d83a-11e8-b9e5-e069959ace76

Error: (10/25/2018 05:48:09 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/24/2018 08:48:06 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/24/2018 12:27:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

Error: (10/23/2018 11:58:18 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


System errors:
=============
Error: (10/25/2018 11:47:06 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: El siguiente controlador de inicio del sistema o de inicio del arranque no se cargó correctamente: 
cdrom

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Garmin Device Interaction Service terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 60000 milisegundos: Reiniciar el servicio.

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Driver & Support Assistant se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: El servicio Windows Presentation Foundation Font Cache 3.0.0.0 terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 0 milisegundos: Reiniciar el servicio.

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio AMD External Events Utility se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Intel(R) Management and Security Application User Notification Service se terminó de manera inesperada. Esto ha sucedido 1 veces.

Error: (10/25/2018 11:46:00 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: El servicio Office Software Protection Platform se terminó de manera inesperada. Esto ha sucedido 1 veces.


Windows Defender:
===================================
Date: 2018-07-04 11:46:57.412
Description: 
Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma:1.271.442.0
Versión de firma anterior:1.269.1075.0
Origen de actualización:Usuario
Tipo de firma:AntiSpyware
Tipo de actualización:Diferencia
Usuario:NT AUTHORITY\SYSTEM
Versión de motor actual:1.1.15000.2
Versión de motor anterior:1.1.14901.4
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

Date: 2018-07-04 11:46:57.412
Description: 
Windows Defender encontró un error al intentar actualizar el motor.
Nueva versión de motor:1.1.15000.2
Versión de motor anterior:1.1.14901.4
Origen de actualización:Usuario
Usuario:NT AUTHORITY\SYSTEM
Código de error:0x80070666
Descripción de error:Ya está instalada otra versión de este producto. La instalación de esta versión no puede continuar. Para configurar o quitar la versión existente de este producto, use Agregar o quitar programas del Panel de control. 

CodeIntegrity:
===================================

Date: 2018-10-20 00:21:13.320
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\drivers\atikmpag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-20 00:21:13.010
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\drivers\atikmpag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-20 00:21:12.680
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\drivers\atikmpag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-20 00:21:12.350
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\drivers\atikmpag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-16 10:58:01.730
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\DriverStore\FileRepository\cw186187.inf_x86_neutral_a03c76198d91abd9\B186152\atikmdag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-16 10:58:01.230
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\DriverStore\FileRepository\cw186187.inf_x86_neutral_a03c76198d91abd9\B186152\atikmdag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-16 10:58:00.720
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\DriverStore\FileRepository\cw186187.inf_x86_neutral_a03c76198d91abd9\B186152\atikmdag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

Date: 2018-10-16 10:58:00.190
Description: 
Integridad de código no puede comprobar la integridad de imagen del archivo \Device\HarddiskVolume6\wwwwWindows\System32\DriverStore\FileRepository\cw186187.inf_x86_neutral_a03c76198d91abd9\B186152\atikmdag.sys porque el conjunto de hashes de imagen por página no se encuentra en el sistema.

==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Percentage of memory in use: 24%
Total physical RAM: 8171.95 MB
Available physical RAM: 6141.18 MB
Total Virtual: 16342.04 MB
Available Virtual: 14173.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.47 GB) (Free:62.26 GB) NTFS
Drive d: (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.04 GB) NTFS
Drive f: (Nuevo vol) (Fixed) (Total:931.41 GB) (Free:126.48 GB) NTFS
Drive g: (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive h: () (Fixed) (Total:931.41 GB) (Free:660.82 GB) NTFS

\\?\Volume{3dc6eacd-2fe9-11e5-9632-806e6f6e6963}\ (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 9614BA1E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 50CE3EA7)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 1CD6A133)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#7

can result of Farbar Recovery Scan Tool (FRST) (x64) Version: 24.10.2018

Ran by Jose (administrator) on JOSE-PC (25-10-2018 12:02:42)
Running from C:\Users\Jose\Desktop
Loaded Profiles: Jose (Available Profiles: Jose)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Español (España, internacional)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe
(Garmin Ltd. or its subsidiaries) F:\Todos los Programas que se instala en el C\Garmin\Device Interaction Service\GarminService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 5\creator-ws.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe
(DEVGURU Co., LTD.) F:\Todos los Programas que se instala en el C\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Zune\ZuneLauncher.exe
() C:\Program Files (x86)\GLPCCamera\monitorpad.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(iSkySoft) C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe
(Intel) C:\Program Files (x86)\Intel Driver and Support Assistant\DSATray.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391096 2018-10-03] (Realtek Semiconductor)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [GLSystray] => C:\Program Files (x86)\GLPCCamera\monitorpad.exe [69632 2014-03-11] ()
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-02-09] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311616 2015-07-27] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [iSkysoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe [2138272 2016-10-08] (iSkySoft)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4509184 2012-12-27] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsInd00] => C:\Program Files (x86)\BrownyInd\Brother\BrIndicator.exe [1885184 2012-12-18] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [DSATray] => C:\Program Files (x86)\Intel Driver and Support Assistant\DsaTray.exe [136952 2018-05-30] (Intel)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-10-06] (Oracle Corporation)
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\Run: [GUDelayStartup] => F:\Todos los Programas que se instala en el C\Glary Utilities 5\StartupManager.exe [43984 2018-10-14] (Glarysoft Ltd)
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\Run: [Xvid] => C:\Program Files (x86)\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\Run: [Kies3PDLR.exe] => F:\Todos los Programas que se instala en el C\Kies3\FirmwareUpdate\Kies3PDLR.exe [1023664 2016-03-25] (Samsung)
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\MountPoints2: {48c0a2d5-dfc8-11e6-879d-e069959ace76} - E:\setup.exe
BootExecute: autocheck autochk *  bootdeletePCloudBroom64.exe \systemroot\system32\BroomData.bit
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-4058849917-871124441-1829732832-1000] => localhost:8080
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 200.49.130.40 200.42.4.199 200.42.4.199
Tcpip\..\Interfaces\{4396958B-B38E-49D6-BD55-D2FE015EFFCA}: [DhcpNameServer] 10.12.0.1
Tcpip\..\Interfaces\{F9D7738B-52C3-4FEB-866C-A0CA7290FA95}: [DhcpNameServer] 200.49.130.40 200.42.4.199 200.42.4.199

Internet Explorer:
==================
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-ar/?ocid=iehp
BHO: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\IEExt\ie_plugin.dll [2018-10-24] (AO Kaspersky Lab)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2014-03-06] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Kaspersky Protection -> {0E2877D3-2641-4970-B794-A553E295428D} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\IEExt\ie_plugin.dll [2018-10-24] (AO Kaspersky Lab)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2014-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\ssv.dll [2018-10-24] (Oracle Corporation)
BHO-x32: PDF Architect 5 Helper -> {AEA429F3-D2D4-4BD7-A03E-5357DA017733} -> C:\Program Files (x86)\PDF Architect 5\creator-ie-helper.dll [2017-02-10] (pdfforge GmbH)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\jp2ssv.dll [2018-10-24] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\IEExt\ie_plugin.dll [2018-10-24] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - PDF Architect 5 Toolbar - {84F23192-A475-4038-B5C0-8584777F2DF4} - C:\Program Files (x86)\PDF Architect 5\creator-ie-plugin.dll [2017-02-10] (pdfforge GmbH)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\IEExt\ie_plugin.dll [2018-10-24] (AO Kaspersky Lab)
Toolbar: HKU\S-1-5-21-4058849917-871124441-1829732832-1000 -> No Name - {C500C267-63BF-451F-8797-4D720C9A2ED9} -  No File

FireFox:
========
FF DefaultProfile: e087mov0.default
FF ProfilePath: C:\Users\Jose\AppData\Roaming\Mozilla\Firefox\Profiles\e087mov0.default [2018-10-25]
FF Homepage: Mozilla\Firefox\Profiles\e087mov0.default -> hxxps://ar.yahoo.com/
FF Extension: (Diccionario Español Argentina) - C:\Users\Jose\AppData\Roaming\Mozilla\Firefox\Profiles\e087mov0.default\Extensions\[email protected] [2018-04-08] [Legacy]
FF Extension: (MyJDownloader Browser Extension) - C:\Users\Jose\AppData\Roaming\Mozilla\Firefox\Profiles\e087mov0.default\Extensions\[email protected] [2018-09-24]
FF Extension: (Español (AR) Language Pack) - C:\Users\Jose\AppData\Roaming\Mozilla\Firefox\Profiles\e087mov0.default\Extensions\[email protected] [2018-10-23]
FF Extension: (Video DownloadHelper) - C:\Users\Jose\AppData\Roaming\Mozilla\Firefox\Profiles\e087mov0.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2018-08-01]
FF Extension: (SecureLinks) - C:\Users\Jose\AppData\Roaming\Mozilla\Firefox\Profiles\e087mov0.default\Extensions\{d359add5-fac1-4d59-b2c5-ec5753587cc2} [2016-10-30] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi [2018-10-24]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\FFExt\light_plugin_firefox\addon.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_31_0_0_122.dll [2018-10-09] ()
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-21] (Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-08-10] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-09] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\dtplugin\npDeployJava1.dll [2018-10-24] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.191.2 -> C:\Program Files (x86)\Java\jre1.8.0_191\bin\plugin2\npjp2.dll [2018-10-24] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll [2015-07-21] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-16] (Google Inc.)
FF Plugin-x32: PDF Architect 5 -> C:\Program Files (x86)\PDF Architect 5\np-previewer.dll [2017-02-10] (pdfforge GmbH)

Chrome: 
=======
CHR Profile: C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default [2018-10-25]
CHR Extension: (Documentos) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-10-16]
CHR Extension: (Google Drive) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-10-16]
CHR Extension: (Kaspersky Protection) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\blbkdnmdcafmfhinpmnlhhddbepgkeaa [2018-10-22]
CHR Extension: (YouTube) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-10-16]
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj [2018-10-16]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-16]
CHR Extension: (Safe Money) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh [2018-10-16]
CHR Extension: (Dangerous Websites Blocker) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail [2018-10-16]
CHR Extension: (Malwarebytes Browser Extension) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2018-10-16]
CHR Extension: (Virtual Keyboard) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh [2018-10-16]
CHR Extension: (Kaspersky Protection) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\mchjnmdbdlkdbfliogedbnpnanfjnolk [2018-10-24]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-10-16]
CHR Extension: (Gmail) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-10-16]
CHR Extension: (Anti-Banner) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman [2018-10-16]
CHR Extension: (Chrome Media Router) - C:\Users\Jose\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-10-17]
CHR HKLM\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk
CHR HKLM-x32\...\Chrome\Extension: [mchjnmdbdlkdbfliogedbnpnanfjnolk] - hxxps://chrome.google.com/webstore/detail/mchjnmdbdlkdbfliogedbnpnanfjnolk

Opera: 
=======
OPR StartupUrls:  "hxxps://espanol.yahoo.com/" 

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVP18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\avp.exe [354672 2017-01-24] (AO Kaspersky Lab)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7211968 2018-08-08] ()
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [282112 2012-10-26] (Brother Industries, Ltd.) [File not signed]
R2 DSAService; C:\Program Files (x86)\Intel Driver and Support Assistant\DSAService.exe [23288 2018-05-30] (Intel)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [776832 2018-05-05] (EasyAntiCheat Ltd)
R2 Garmin Device Interaction Service; F:\Todos los Programas que se instala en el C\Garmin\Device Interaction Service\GarminService.exe [1194512 2018-06-06] (Garmin Ltd. or its subsidiaries)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [24888 2015-07-26] (Hewlett-Packard Company)
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel Corporation)
S3 klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 18.0.0\x64\vssbridge64.exe [426416 2018-10-24] (AO Kaspersky Lab)
S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2018-08-01] () [File not signed]
S2 KSDE2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [354672 2017-01-24] (AO Kaspersky Lab)
U2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [32384 2016-10-03] (The OpenVPN Project)
S3 PDF Architect 5; C:\Program Files\PDF Architect 5\ws.exe [2706824 2017-02-10] (pdfforge GmbH)
S3 PDF Architect 5 CrashHandler; C:\Program Files\PDF Architect 5\crash-handler-ws.exe [1048976 2017-02-10] (pdfforge GmbH)
R2 PDF Architect 5 Creator; C:\Program Files\PDF Architect 5\creator-ws.exe [856976 2017-02-10] (pdfforge GmbH)
R2 PDF Architect 5 Manager; C:\ProgramData\pdfforge\PDF Architect 5 Manager\PDF Architect 5\Architect Manager.exe [985904 2017-02-28] (© pdfforge GmbH.)
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-02-28] (Riverbed Technology, Inc.)
R2 ss_conn_service; F:\Todos los Programas que se instala en el C\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.2.222\WsAppService.exe [474768 2017-03-01] (Wondershare)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AmUStor; C:\Windows\System32\drivers\AmUStor.SYS [108992 2018-02-25] ()
S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-05] (www.winchiphead.com)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [247008 2016-12-26] (AO Kaspersky Lab)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 dtlitescsibus; C:\Windows\System32\DRIVERS\dtlitescsibus.sys [30264 2017-01-21] (Disc Soft Ltd)
S3 dtliteusbbus; C:\Windows\System32\DRIVERS\dtliteusbbus.sys [47672 2017-01-21] (Disc Soft Ltd)
S3 ETDSMBus; C:\Windows\System32\DRIVERS\ETDSMBus.sys [31320 2015-07-23] (ELAN Microelectronic Corp.)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [129448 2017-09-19] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd.)
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [3495680 2016-03-26] (Windows (R) Codename Longhorn DDK provider)
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [28936 2018-08-23] (Glarysoft Ltd)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [30960 2015-05-29] (Intel Corporation)
S3 ISODrive; F:\Todos los Programas que se instala en el C\UltraISO\drivers\ISODrv64.sys [115448 2013-11-21] (EZB Systems, Inc.)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [554408 2016-10-01] (AO Kaspersky Lab)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [70880 2017-12-24] (AO Kaspersky Lab)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [119584 2018-10-24] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [85704 2018-10-24] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [206024 2018-10-24] (AO Kaspersky Lab)
R1 KLHK; C:\Windows\System32\DRIVERS\klhk.sys [1214752 2018-10-24] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1074472 2018-10-24] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [56520 2018-10-24] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [57568 2016-12-23] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [58592 2016-12-07] (AO Kaspersky Lab)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [50672 2017-12-24] (AO Kaspersky Lab)
R3 kltap; C:\Windows\System32\DRIVERS\kltap.sys [52152 2016-06-07] (The OpenVPN Project)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [81904 2017-12-24] (AO Kaspersky Lab)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [142024 2018-10-24] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [199392 2017-12-24] (AO Kaspersky Lab)
S3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [188992 2016-02-10] (Intel Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-02-28] (Riverbed Technology, Inc.)
R3 nuviocir; C:\Windows\System32\DRIVERS\nuviocir_x64.sys [39704 2013-07-17] (Nuvoton Technology Corp.)
S3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [50320 2015-01-29] (Panda Security, S.L.)
R0 pwdrvio; C:\Windows\System32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [42600 2015-11-16] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd.)
S3 usbser; C:\Windows\SysWOW64\DRIVERS\usbser.sys [25600 2008-12-03] (Microsoft Corporation) [File not signed]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-25 12:02 - 2018-10-25 12:02 - 000024058 _____ C:\Users\Jose\Desktop\FRST.txt
2018-10-25 12:02 - 2018-10-25 12:02 - 000000000 ____D C:\FRST
2018-10-25 11:54 - 2018-10-25 11:54 - 002414592 _____ (Farbar) C:\Users\Jose\Desktop\FRST64.exe
2018-10-25 11:45 - 2018-10-25 11:46 - 000000000 ____D C:\AdwCleaner
2018-10-24 11:42 - 2018-10-24 11:42 - 000003446 _____ C:\Users\Jose\Documents\cc_20181024_114201.reg
2018-10-24 11:31 - 2018-10-24 11:31 - 000098680 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2018-10-24 11:31 - 2018-10-24 11:31 - 000000000 ____D C:\Users\Jose\AppData\Roaming\Sun
2018-10-24 11:31 - 2018-10-24 11:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2018-10-24 11:31 - 2018-10-24 11:31 - 000000000 ____D C:\Program Files (x86)\Java
2018-10-24 00:30 - 2018-10-24 00:39 - 001074472 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klif.sys
2018-10-24 00:30 - 2018-10-24 00:39 - 000206024 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klflt.sys
2018-10-24 00:30 - 2018-10-24 00:39 - 000152960 _____ (AO Kaspersky Lab) C:\Windows\system32\klhkum.dll
2018-10-24 00:30 - 2018-10-24 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection
2018-10-24 00:30 - 2018-10-24 00:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Internet Security
2018-10-24 00:30 - 2018-10-24 00:30 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab
2018-10-24 00:30 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\Windows\system32\klfphc.dll
2018-10-24 00:18 - 2018-10-24 00:41 - 000000000 ____D C:\Users\Jose\Desktop\Kaspersky Internet Security 2018 + License key [Lifetime]
2018-10-23 12:34 - 2018-06-25 19:45 - 001481548 _____ C:\Users\Jose\Desktop\DIRECTV 293610542.pdf
2018-10-22 17:40 - 2018-10-25 11:49 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2018-10-22 17:34 - 2018-10-22 17:34 - 000004284 _____ C:\Users\Jose\Documents\cc_20181022_173451.reg
2018-10-21 22:34 - 2018-10-21 22:34 - 000064307 _____ C:\Users\Jose\Desktop\W55644CCST10_DIMMER%20ANALOGICO_2018-10-10.zip
2018-10-19 12:08 - 2018-10-19 12:08 - 000000000 ____D C:\Users\Jose\AppData\Local\ESET
2018-10-19 11:50 - 2018-10-19 11:50 - 000000000 ____D C:\Users\Jose\.cache
2018-10-19 11:21 - 2018-10-24 21:35 - 000040948 __RSH C:\ProgramData\ntuser.pol
2018-10-19 11:13 - 2018-10-19 11:13 - 000002674 _____ C:\Users\Jose\Documents\cc_20181019_111321.reg
2018-10-17 11:01 - 2018-10-17 11:01 - 000000910 _____ C:\Users\Jose\Documents\cc_20181017_110140.reg
2018-10-16 18:30 - 2018-10-25 11:17 - 000000000 ____D C:\Users\Jose\Desktop\Arduprofe
2018-10-16 18:09 - 2018-10-17 07:31 - 000002253 _____ C:\Users\Jose\Desktop\Google Chrome.lnk
2018-10-16 18:04 - 2018-10-16 18:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2018-10-16 16:26 - 2018-10-16 16:26 - 000000926 _____ C:\Users\Jose\Documents\cc_20181016_162608.reg
2018-10-16 16:25 - 2018-10-16 16:25 - 000000774 _____ C:\Users\Jose\Documents\cc_20181016_162532.reg
2018-10-16 16:09 - 2018-10-16 16:09 - 000002294 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-10-16 16:08 - 2018-10-16 16:08 - 000003534 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2018-10-16 16:08 - 2018-10-16 16:08 - 000003406 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2018-10-15 18:36 - 2018-09-11 13:18 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-10-15 18:33 - 2018-10-15 18:33 - 000000942 _____ C:\Users\Jose\Documents\cc_20181015_183340.reg
2018-10-15 18:11 - 2018-10-15 18:11 - 000000000 ____D C:\Users\Jose\AppData\Roaming\Obsidium
2018-10-15 17:52 - 2018-10-15 17:52 - 000000000 ____D C:\Users\Jose\AppData\Local\mbamtray
2018-10-13 18:31 - 2018-10-13 18:31 - 005329709 _____ C:\Users\Jose\Desktop\HCD-GNX60_987953201.pdf
2018-10-13 17:56 - 2018-10-25 11:08 - 000000357 _____ C:\Users\Jose\Desktop\Codigos de Tecnonauta.txt
2018-10-13 00:24 - 2018-10-13 00:24 - 000001248 _____ C:\Users\Jose\Documents\cc_20181013_002359.reg
2018-10-12 16:30 - 2018-10-12 16:30 - 000424404 _____ C:\Users\Jose\Desktop\pasos_a_seguir_si_vivis_a_mas_de_50km_de_la_agencia_nacional_de_discapacidad_simbolo.pdf
2018-10-10 11:23 - 2018-10-03 17:48 - 015218696 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE3.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 003418072 _____ (DTS, Inc.) C:\Windows\system32\slcnt64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 003306896 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 003128888 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 002198048 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001435216 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001396232 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001382312 _____ (TOSHIBA Corporation) C:\Windows\system32\tosade.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001337720 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaeapo64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001318912 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDHF64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001282616 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001180584 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001073736 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 001027888 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SEHDHF32.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000994744 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000965088 _____ (Sony Corporation) C:\Windows\system32\SFSS_APO.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000873544 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo264.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000852208 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tosasfapo64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000604872 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\tossaemaxapo64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000541192 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000467232 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000447256 _____ (Toshiba Client Solutions Co., Ltd.) C:\Windows\system32\toseaeapo64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000381488 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000343768 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000341224 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000341224 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000231976 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000230784 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000218352 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000175016 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000158776 _____ (TOSHIBA Corporation) C:\Windows\system32\tadefxapo.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000090976 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000088384 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000083688 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2018-10-10 11:23 - 2018-10-03 17:48 - 000075616 _____ (TOSHIBA CORPORATION.) C:\Windows\system32\tepeqapo64.dll
2018-10-10 11:23 - 2018-10-03 14:48 - 072520776 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2018-10-10 11:23 - 2018-10-03 14:48 - 006400040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2018-10-10 11:23 - 2018-10-03 14:48 - 003677224 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2018-10-10 11:23 - 2018-10-03 14:48 - 003159472 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2018-10-10 11:23 - 2018-10-03 14:48 - 000266616 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2018-10-10 11:23 - 2018-10-03 14:20 - 023073815 _____ C:\Windows\system32\Drivers\RTAIODAT.DAT
2018-10-10 11:22 - 2018-10-03 17:48 - 003761640 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 003319480 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 003281232 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 001353384 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000888616 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000692224 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000453352 _____ (Dolby Laboratories) C:\Windows\system32\R4EED64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000392936 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000327336 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000327328 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000220448 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000193040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000157408 _____ (Dolby Laboratories) C:\Windows\system32\R4EEL64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000139832 _____ (Dolby Laboratories) C:\Windows\system32\R4EEA64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000116600 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000093968 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2018-10-10 11:22 - 2018-10-03 17:48 - 000090232 _____ (Dolby Laboratories) C:\Windows\system32\R4EEG64A.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 005347072 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv211.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 002992264 _____ (Audyssey Labs) C:\Windows\system32\AudysseyEfx.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 002444760 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOv201.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001971448 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001965232 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001788032 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001598472 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001544328 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOProp.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001516368 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001448856 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOv251gm.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001372472 _____ (Dolby Laboratories) C:\Windows\system32\DAX3APOv251.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001259808 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOvlldp.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 001164696 _____ (Dolby Laboratories) C:\Windows\system32\DolbyAPOvlldpgm.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000751376 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000734848 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000715720 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000511720 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000452816 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000448680 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000406528 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2APIPCLL.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000367688 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000366200 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\HMAPO.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000360424 _____ (Harman) C:\Windows\system32\HMClariFi.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000333088 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000316080 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000278352 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000261312 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000261280 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000260288 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000203912 _____ (Harman) C:\Windows\system32\HMHVS.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000191008 _____ (Harman) C:\Windows\system32\HMEQ_Voice.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000191008 _____ (Harman) C:\Windows\system32\HMEQ.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000179672 _____ (Harman) C:\Windows\system32\HMLimiter.dll
2018-10-10 11:22 - 2018-10-03 17:47 - 000175824 _____ (ASUSTeK COMPUTER INC.) C:\Windows\system32\ATKWMI.dll
2018-10-10 11:22 - 2018-10-03 14:48 - 007178544 _____ (Dolby Laboratories) C:\Windows\system32\R4EEP64A.dll
2018-10-10 11:22 - 2018-10-03 14:48 - 002930216 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2018-10-10 11:22 - 2018-10-03 14:48 - 000023752 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 007101824 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 006270264 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 001159264 _____ (Dolby Laboratories) C:\Windows\system32\DolbyDAX2APOProp.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 000416584 _____ (Harman) C:\Windows\system32\HMUI.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 000378456 _____ (Dolby Laboratories) C:\Windows\system32\HiFiDAX2API.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 000154440 _____ (Harman) C:\Windows\system32\HarmanAudioInterface.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 000122424 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 000118664 _____ C:\Windows\system32\AcpiServiceVnA64.dll
2018-10-10 11:22 - 2018-10-03 14:47 - 000105384 _____ C:\Windows\system32\audioLibVc.dll
2018-10-10 07:43 - 2018-09-19 05:08 - 000343552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrd3x40.dll
2018-10-10 07:43 - 2018-09-18 16:08 - 000396888 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2018-10-10 07:43 - 2018-09-18 15:10 - 000348976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2018-10-10 07:43 - 2018-09-18 02:52 - 025735168 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2018-10-10 07:43 - 2018-09-18 02:27 - 002902016 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2018-10-10 07:43 - 2018-09-18 02:26 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2018-10-10 07:43 - 2018-09-18 02:25 - 000576512 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2018-10-10 07:43 - 2018-09-18 02:25 - 000417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2018-10-10 07:43 - 2018-09-18 02:25 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2018-10-10 07:43 - 2018-09-18 02:25 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2018-10-10 07:43 - 2018-09-18 02:19 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2018-10-10 07:43 - 2018-09-18 02:18 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2018-10-10 07:43 - 2018-09-18 02:16 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2018-10-10 07:43 - 2018-09-18 02:15 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2018-10-10 07:43 - 2018-09-18 02:15 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2018-10-10 07:43 - 2018-09-18 02:14 - 005779456 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2018-10-10 07:43 - 2018-09-18 02:14 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2018-10-10 07:43 - 2018-09-18 02:14 - 000794624 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2018-10-10 07:43 - 2018-09-18 02:09 - 000969216 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2018-10-10 07:43 - 2018-09-18 02:06 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2018-10-10 07:43 - 2018-09-18 02:01 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2018-10-10 07:43 - 2018-09-18 02:00 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2018-10-10 07:43 - 2018-09-18 02:00 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2018-10-10 07:43 - 2018-09-18 01:57 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2018-10-10 07:43 - 2018-09-18 01:57 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2018-10-10 07:43 - 2018-09-18 01:55 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2018-10-10 07:43 - 2018-09-18 01:53 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2018-10-10 07:43 - 2018-09-18 01:45 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2018-10-10 07:43 - 2018-09-18 01:43 - 000728064 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2018-10-10 07:43 - 2018-09-18 01:42 - 000809472 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2018-10-10 07:43 - 2018-09-18 01:41 - 002136064 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2018-10-10 07:43 - 2018-09-18 01:41 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2018-10-10 07:43 - 2018-09-18 01:39 - 015283712 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2018-10-10 07:43 - 2018-09-18 01:35 - 004510720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2018-10-10 07:43 - 2018-09-18 01:33 - 020278784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2018-10-10 07:43 - 2018-09-18 01:23 - 001555968 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2018-10-10 07:43 - 2018-09-18 01:21 - 000497664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2018-10-10 07:43 - 2018-09-18 01:21 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2018-10-10 07:43 - 2018-09-18 01:20 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2018-10-10 07:43 - 2018-09-18 01:20 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2018-10-10 07:43 - 2018-09-18 01:19 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2018-10-10 07:43 - 2018-09-18 01:18 - 002295808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2018-10-10 07:43 - 2018-09-18 01:15 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2018-10-10 07:43 - 2018-09-18 01:15 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2018-10-10 07:43 - 2018-09-18 01:14 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2018-10-10 07:43 - 2018-09-18 01:13 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2018-10-10 07:43 - 2018-09-18 01:13 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2018-10-10 07:43 - 2018-09-18 01:12 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2018-10-10 07:43 - 2018-09-18 01:10 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2018-10-10 07:43 - 2018-09-18 01:06 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2018-10-10 07:43 - 2018-09-18 01:03 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2018-10-10 07:43 - 2018-09-18 01:02 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2018-10-10 07:43 - 2018-09-18 01:02 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2018-10-10 07:43 - 2018-09-18 01:00 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2018-10-10 07:43 - 2018-09-18 00:59 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2018-10-10 07:43 - 2018-09-18 00:58 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2018-10-10 07:43 - 2018-09-18 00:57 - 004494848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2018-10-10 07:43 - 2018-09-18 00:57 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2018-10-10 07:43 - 2018-09-18 00:53 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2018-10-10 07:43 - 2018-09-18 00:52 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2018-10-10 07:43 - 2018-09-18 00:51 - 000696320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2018-10-10 07:43 - 2018-09-18 00:50 - 002059776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2018-10-10 07:43 - 2018-09-18 00:50 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2018-10-10 07:43 - 2018-09-18 00:37 - 004037632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2018-10-10 07:43 - 2018-09-18 00:34 - 001330176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2018-10-10 07:43 - 2018-09-18 00:31 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2018-10-10 07:43 - 2018-09-11 15:28 - 003227136 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2018-10-10 07:43 - 2018-09-11 15:23 - 000161280 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2018-10-10 07:43 - 2018-09-11 15:22 - 000129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2018-10-10 07:43 - 2018-09-08 22:02 - 005552328 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2018-10-10 07:43 - 2018-09-08 22:02 - 001680072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2018-10-10 07:43 - 2018-09-08 22:02 - 000986824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2018-10-10 07:43 - 2018-09-08 22:02 - 000708296 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2018-10-10 07:43 - 2018-09-08 22:02 - 000631680 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2018-10-10 07:43 - 2018-09-08 22:02 - 000265416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2018-10-10 07:43 - 2018-09-08 22:02 - 000262344 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2018-10-10 07:43 - 2018-09-08 22:02 - 000154824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2018-10-10 07:43 - 2018-09-08 22:02 - 000095432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2018-10-10 07:43 - 2018-09-08 22:01 - 001664320 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 002851840 _____ (Microsoft Corporation) C:\Windows\system32\themeui.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 002009600 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 001211904 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000361984 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000094208 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2018-10-10 07:43 - 2018-09-08 21:59 - 000013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 001461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 001163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 000731648 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 000419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 000405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 000044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 000043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2018-10-10 07:43 - 2018-09-08 21:58 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000123904 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

#8

Segunda parte:

2018-10-10 07:43 - 2018-09-08 21:57 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:57 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:46 - 004054216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2018-10-10 07:43 - 2018-09-08 21:46 - 003959496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2018-10-10 07:43 - 2018-09-08 21:46 - 001314072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\themeui.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 001114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000313344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000275968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000082944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcrypt.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000070144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2018-10-10 07:43 - 2018-09-08 21:44 - 000005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 001391104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000554496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2018-10-10 07:43 - 2018-09-08 21:43 - 000017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:42 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:25 - 000148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2018-10-10 07:43 - 2018-09-08 21:25 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2018-10-10 07:43 - 2018-09-08 21:25 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2018-10-10 07:43 - 2018-09-08 21:25 - 000017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2018-10-10 07:43 - 2018-09-08 21:21 - 000338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2018-10-10 07:43 - 2018-09-08 21:21 - 000129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2018-10-10 07:43 - 2018-09-08 21:20 - 000296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2018-10-10 07:43 - 2018-09-08 21:18 - 000050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2018-10-10 07:43 - 2018-09-08 21:16 - 000291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2018-10-10 07:43 - 2018-09-08 21:15 - 000112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2018-10-10 07:43 - 2018-09-08 21:15 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2018-10-10 07:43 - 2018-09-08 21:15 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2018-10-10 07:43 - 2018-09-08 21:15 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-10-10 07:43 - 2018-09-08 21:15 - 000060928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2018-10-10 07:43 - 2018-09-08 21:15 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2018-10-10 07:43 - 2018-09-08 21:13 - 000025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2018-10-10 07:43 - 2018-09-08 21:13 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2018-10-10 07:43 - 2018-09-08 21:13 - 000007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2018-10-10 07:43 - 2018-09-08 21:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2018-10-10 07:43 - 2018-09-08 21:12 - 000036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2018-10-10 07:43 - 2018-09-08 21:12 - 000006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:12 - 000004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:12 - 000003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2018-10-10 07:43 - 2018-09-08 21:12 - 000003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2018-10-10 07:43 - 2018-08-28 03:24 - 014637568 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2018-10-10 07:43 - 2018-08-28 03:24 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2018-10-10 07:43 - 2018-08-28 03:24 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2018-10-10 07:43 - 2018-08-28 03:24 - 000005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2018-10-10 07:43 - 2018-08-28 03:09 - 012574208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2018-10-10 07:43 - 2018-08-28 03:09 - 011411968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2018-10-10 07:43 - 2018-08-28 02:52 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2018-10-10 07:43 - 2018-08-28 02:52 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2018-10-10 07:43 - 2018-08-28 02:52 - 000004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2018-10-10 07:43 - 2018-08-15 23:18 - 000041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2018-10-10 07:43 - 2018-08-13 18:49 - 001391856 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2018-10-10 07:43 - 2018-08-13 12:54 - 000687616 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2018-10-10 07:43 - 2018-08-12 17:32 - 000140976 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2018-10-10 07:43 - 2018-08-08 12:54 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2018-10-10 07:43 - 2018-08-08 12:54 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2018-10-10 07:43 - 2018-08-08 12:40 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2018-10-10 07:43 - 2018-08-08 12:40 - 000142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2018-10-10 07:42 - 2018-09-18 02:38 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2018-10-10 07:42 - 2018-09-18 02:38 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2018-10-10 07:42 - 2018-09-18 01:31 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2018-10-10 07:42 - 2018-09-08 21:59 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2018-10-10 07:42 - 2018-09-08 21:59 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2018-10-10 07:42 - 2018-09-08 21:59 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2018-10-10 07:42 - 2018-09-08 21:57 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2018-10-10 07:42 - 2018-09-08 21:43 - 000146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2018-10-10 07:42 - 2018-09-08 21:43 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2018-10-10 07:42 - 2018-09-08 21:43 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2018-10-10 07:42 - 2018-09-08 21:42 - 000690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2018-10-10 07:42 - 2018-08-28 03:24 - 012574720 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2018-10-10 07:42 - 2018-08-12 17:27 - 000680960 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2018-10-10 07:20 - 2018-02-25 20:18 - 001083424 _____ C:\Windows\system32\AmRdrIco.icl
2018-10-10 07:20 - 2018-02-25 20:18 - 000108992 _____ () C:\Windows\system32\Drivers\AmUStor.sys
2018-10-09 10:27 - 2018-10-09 10:27 - 003504787 _____ C:\Users\Jose\Desktop\Transistor Circuits volume 1.pdf
2018-10-08 15:38 - 2018-10-08 15:38 - 000000422 _____ C:\Users\Jose\Documents\cc_20181008_153827.reg
2018-10-06 11:49 - 2018-10-06 11:49 - 007176395 _____ C:\Users\Jose\Desktop\Ultimate_Guide_Arduino_Sensors_Modules.pdf
2018-10-05 16:33 - 2018-10-05 16:33 - 000000844 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++.lnk
2018-10-05 16:33 - 2018-10-05 16:33 - 000000000 ____D C:\Users\Jose\AppData\Local\Notepad++
2018-10-05 10:44 - 2018-10-05 10:44 - 000001728 _____ C:\Users\Jose\Documents\cc_20181005_104430.reg

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-25 12:02 - 2016-11-18 00:19 - 000000000 ____D C:\Users\Jose\AppData\LocalLow\Mozilla
2018-10-25 11:54 - 2009-07-14 01:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-10-25 11:54 - 2009-07-14 01:45 - 000026576 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-10-25 11:52 - 2010-11-21 04:09 - 000747396 _____ C:\Windows\system32\perfh00A.dat
2018-10-25 11:52 - 2010-11-21 04:09 - 000158868 _____ C:\Windows\system32\perfc00A.dat
2018-10-25 11:52 - 2009-07-14 02:13 - 001676890 _____ C:\Windows\system32\PerfStringBackup.INI
2018-10-25 11:52 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\inf
2018-10-25 11:46 - 2016-03-04 14:03 - 000000198 _____ C:\Windows\Tasks\AutoKMS.job
2018-10-25 11:46 - 2009-07-14 02:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-10-25 11:25 - 2015-07-30 09:08 - 000000000 ____D C:\Users\Jose\AppData\Local\JDownloader v2.0
2018-10-25 11:24 - 2015-07-22 03:37 - 000000000 ____D C:\Users\Jose\AppData\Roaming\vlc
2018-10-25 08:59 - 2015-07-22 01:14 - 000000000 ____D C:\Users\Jose\Desktop\Mantenimiento
2018-10-25 08:58 - 2018-06-25 08:58 - 000000000 ____D C:\Program Files (x86)\Intel Driver and Support Assistant
2018-10-25 06:00 - 2018-06-25 02:23 - 000000484 _____ C:\Windows\Tasks\DriverEasy Scheduled Scan.job
2018-10-25 06:00 - 2017-08-31 19:11 - 000000000 ____D C:\ProgramData\Betternet
2018-10-24 21:35 - 2015-07-22 01:38 - 000000000 ____D C:\ProgramData\TEMP
2018-10-24 20:05 - 2016-08-09 23:55 - 010920448 ___SH C:\Users\Jose\Desktop\Thumbs.db
2018-10-24 01:24 - 2016-09-27 12:36 - 000000000 ____D C:\Users\Jose\AppData\Local\Google
2018-10-24 00:39 - 2017-12-24 02:21 - 001214752 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klhk.sys
2018-10-24 00:39 - 2017-12-24 02:21 - 000142024 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klwtp.sys
2018-10-24 00:39 - 2017-12-24 02:21 - 000119584 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klbackupflt.sys
2018-10-24 00:39 - 2016-10-11 14:14 - 000056520 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klim6.sys
2018-10-24 00:39 - 2016-05-31 23:24 - 000085704 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\kldisk.sys
2018-10-24 00:30 - 2015-07-29 15:51 - 000000000 ____D C:\Program Files\Common Files\AV
2018-10-24 00:27 - 2017-09-05 08:00 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2018-10-23 23:51 - 2016-11-17 23:30 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-10-23 23:51 - 2015-07-21 18:29 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-10-23 16:09 - 2018-08-10 09:51 - 000000530 _____ C:\Windows\wininit.ini
2018-10-23 12:43 - 2016-11-19 08:22 - 000000000 ____D C:\Users\Jose\Desktop\PAGO DE EDEN
2018-10-22 17:34 - 2015-09-09 03:22 - 000000000 ____D C:\Windows\Minidump
2018-10-20 18:37 - 2015-07-22 03:16 - 000000000 ____D C:\Users\Jose\Desktop\Jose - Tablas de Calendario y sueldo
2018-10-19 11:53 - 2016-12-11 19:22 - 000000000 ____D C:\Windows\system32\DAX3
2018-10-19 11:53 - 2015-08-18 14:28 - 000000000 ____D C:\Windows\system32\DAX2
2018-10-19 11:53 - 2015-07-21 17:55 - 000000000 ____D C:\Windows\SysWOW64\RTCOM
2018-10-19 11:50 - 2015-07-21 17:47 - 000000000 ____D C:\Users\Jose
2018-10-19 11:21 - 2009-07-14 00:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2018-10-19 11:21 - 2009-07-14 00:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2018-10-19 11:07 - 2015-07-21 18:58 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2018-10-17 11:04 - 2015-07-21 18:42 - 000003014 _____ C:\Windows\System32\Tasks\GU5SkipUAC
2018-10-17 11:04 - 2015-07-21 18:42 - 000000887 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2018-10-16 16:16 - 2015-07-23 01:17 - 000000000 ____D C:\Program Files (x86)\Opera
2018-10-16 16:09 - 2016-09-27 12:36 - 000000000 ____D C:\Program Files (x86)\Google
2018-10-15 18:48 - 2010-11-21 00:27 - 000559880 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2018-10-15 18:36 - 2015-07-21 18:47 - 000000000 ____D C:\ProgramData\Malwarebytes
2018-10-15 09:31 - 2015-10-26 22:00 - 000000000 ____D C:\Users\Jose\Documents\PDF Architect
2018-10-13 20:35 - 2015-08-16 10:42 - 000000000 ____D C:\Users\Jose\Desktop\Musica de Ruben
2018-10-11 18:19 - 2017-08-06 18:47 - 000000000 ____D C:\Users\Jose\Desktop\Todo ARDUINO
2018-10-11 18:17 - 2017-07-10 23:33 - 000000000 ____D C:\Users\Jose\Desktop\Proyectos de electronica 2017
2018-10-11 08:54 - 2009-07-14 01:45 - 000416240 _____ C:\Windows\system32\FNTCACHE.DAT
2018-10-10 23:43 - 2009-07-13 23:34 - 000000478 _____ C:\Windows\win.ini
2018-10-10 23:38 - 2015-07-21 21:29 - 000000000 ____D C:\Windows\system32\MRT
2018-10-10 23:35 - 2015-07-21 21:29 - 136745976 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2018-10-10 23:32 - 2015-07-21 23:15 - 001650540 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-10-09 12:09 - 2017-05-28 15:56 - 000004496 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2018-10-09 12:09 - 2015-07-22 03:48 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-10-09 12:09 - 2015-07-22 03:48 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-10-09 12:09 - 2015-07-22 03:48 - 000004320 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-10-09 12:09 - 2015-07-22 03:48 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-10-09 12:09 - 2015-07-22 03:48 - 000000000 ____D C:\Windows\system32\Macromed
2018-10-09 11:09 - 2018-03-13 12:09 - 000004488 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-10-08 21:38 - 2016-04-14 13:45 - 000001503 _____ C:\Users\Jose\Desktop\seguimiento encomienda.txt
2018-10-05 20:04 - 2017-08-11 20:39 - 000000000 ____D C:\Users\Jose\AppData\Local\Arduino15
2018-10-05 16:33 - 2017-08-13 00:39 - 000000000 ____D C:\Users\Jose\AppData\Roaming\Notepad++
2018-10-05 15:57 - 2016-11-20 23:57 - 000000000 ____D C:\Users\Jose\Desktop\Fotos y videos de mama en chacra 2016
2018-10-01 16:56 - 2015-09-03 16:09 - 000000000 ____D C:\Users\Jose\dwhelper

==================== Files in the root of some directories =======

2015-08-10 00:58 - 2015-06-19 04:09 - 627311232 _____ (Doctor Web, Ltd.) C:\Users\Public\drweb-livedisk-900-usb.exe
2017-09-25 12:04 - 2017-09-25 12:03 - 051909713 _____ (KLCP                                                        ) C:\Users\Public\K-Lite_Codec_Pack_1355_Mega.exe
2018-06-17 01:02 - 2018-06-17 01:01 - 055395937 _____ (KLCP                                                        ) C:\Users\Public\K-Lite_Codec_Pack_1420_Mega.exe
2015-10-16 01:59 - 2015-08-07 11:01 - 001035926 _____ () C:\Users\Public\MozBackup-1.5.1-EN.exe
2017-06-29 13:37 - 2017-06-29 13:37 - 000000036 _____ () C:\Users\Jose\AppData\Local\housecall.guid.cache
2017-06-19 00:54 - 2017-06-19 00:54 - 000000001 _____ () C:\Users\Jose\AppData\Local\llftool.4.25.agreement
2017-03-24 21:08 - 2017-03-24 21:08 - 000001318 _____ () C:\Users\Jose\AppData\Local\recently-used.xbel
2015-11-15 07:52 - 2015-11-22 01:21 - 000007650 _____ () C:\Users\Jose\AppData\Local\Resmon.ResmonCfg
2008-02-05 13:28 - 2008-02-05 13:28 - 000000051 _____ () C:\Users\Jose\AppData\Local\setup.txt

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-07-23 07:12

==================== End of FRST.txt ============================

#9

Reviso y te daré respuesta, pero infecciones no hay, solo algunas cosas que se pueden eliminar y/o mejorar


#10

Bien… y ahora sigue estos pasos, MUY Importante ~ Realiza una copia de seguridad del registro :

  • Para hacerlo descarga Delfix en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona "Ejecutar como Administrador.")

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.


En el equipo con los demas programas cerrados:

Inicio >>> Ejecutar >>>Escribes notepad.exe.

Ahora copia y pega estos archivos dentro del Notepad:


Start
CreateRestorePoint:
CloseProcesses:

ShortcutWithArgument: C:\Users\Jose\Desktop\Programas\Download Intel(R) Desktop Utilities.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.intel.com/go/idu/
ShortcutWithArgument: C:\Users\Jose\Desktop\Programas\Download Intel(R) Integrator Assistant.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.intel.com/go/iia/
AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [183]
AlternateDataStreams: C:\ProgramData\TEMP:587F3582 [344]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [125]
AlternateDataStreams: C:\ProgramData\TEMP:72A1B66A [228]
AlternateDataStreams: C:\Users\Jose\Desktop\Jose - Tablas de Calendario y sueldo:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Public\AppData:CSM [221]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\MountPoints2: {48c0a2d5-dfc8-11e6-879d-e069959ace76} - E:\setup.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Toolbar: HKU\S-1-5-21-4058849917-871124441-1829732832-1000 -> No Name - {C500C267-63BF-451F-8797-4D720C9A2ED9} -  No File
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END

Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.

  • Y ahora usa esta Faq de Windows ¿Cómo iniciar Windows en Modo Seguro?, para trabajar desde ese modo de windows.

  • Ejecutas Frst.exe.

  • Presionas el botón Fix y aguardas a que termine.

  • La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

Lo pegas en tu próxima respuesta, comentado como va el Pc


#11

Ok, muchas gracias, y te hago una conslta, tenia instalado el DriverPack pero, creo, que lo limpio uno de los programas que mase, me podrias sugerir algun otro actualizador de drivers parecido a ese por favor?, gracias y saludos


#12

El Driverpack yo lo he usado y va bien,lo único, que empresas como Malwarebytes ( que a su vez tiene Adwcleaner, que es el que te lo elimino), detectan ese software por estos motivos.

PUP.Optional.DriverPack

Este lo he usado también >> https://www.drivereasy.com/

Realiza el ultimo paso y me pones el log y comentas si todo esta bien


#13

Bueno, espero haberlo hecho bien:

Fix result of Farbar Recovery Scan Tool (x64) Version: 24.10.2018
Ran by Jose (25-10-2018 16:58:33) Run:1
Running from C:\Users\Jose\Desktop
Loaded Profiles: Jose (Available Profiles: Jose)
Boot Mode: Safe Mode (minimal)
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:

ShortcutWithArgument: C:\Users\Jose\Desktop\Programas\Download Intel(R) Desktop Utilities.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.intel.com/go/idu/
ShortcutWithArgument: C:\Users\Jose\Desktop\Programas\Download Intel(R) Integrator Assistant.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) -> hxxp://www.intel.com/go/iia/
AlternateDataStreams: C:\ProgramData\TEMP:1AAB2E68 [183]
AlternateDataStreams: C:\ProgramData\TEMP:587F3582 [344]
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 [125]
AlternateDataStreams: C:\ProgramData\TEMP:72A1B66A [228]
AlternateDataStreams: C:\Users\Jose\Desktop\Jose - Tablas de Calendario y sueldo:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Public\AppData:CSM [221]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [478]
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\...\MountPoints2: {48c0a2d5-dfc8-11e6-879d-e069959ace76} - E:\setup.exe
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Toolbar: HKU\S-1-5-21-4058849917-871124441-1829732832-1000 -> No Name - {C500C267-63BF-451F-8797-4D720C9A2ED9} -  No File
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
END
*****************

Error: Restore point can only be created in normal mode.
Processes closed successfully.
C:\Users\Jose\Desktop\Programas\Download Intel(R) Desktop Utilities.lnk => Shortcut argument removed successfully
C:\Users\Jose\Desktop\Programas\Download Intel(R) Integrator Assistant.lnk => Shortcut argument removed successfully
C:\ProgramData\TEMP => ":1AAB2E68" ADS removed successfully
C:\ProgramData\TEMP => ":587F3582" ADS removed successfully
C:\ProgramData\TEMP => ":5C321E34" ADS removed successfully
C:\ProgramData\TEMP => ":72A1B66A" ADS removed successfully
C:\Users\Jose\Desktop\Jose - Tablas de Calendario y sueldo => ":com.dropbox.attributes" ADS removed successfully
C:\Users\Public\AppData => ":CSM" ADS removed successfully
C:\Users\Public\Shared Files => ":VersionCache" ADS removed successfully
HKU\S-1-5-21-4058849917-871124441-1829732832-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{48c0a2d5-dfc8-11e6-879d-e069959ace76} => removed successfully
HKLM\Software\Classes\CLSID\{48c0a2d5-dfc8-11e6-879d-e069959ace76} => not found
C:\Windows\system32\GroupPolicy\Machine => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKU\S-1-5-21-4058849917-871124441-1829732832-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{C500C267-63BF-451F-8797-4D720C9A2ED9}" => removed successfully
HKLM\Software\Classes\CLSID\{C500C267-63BF-451F-8797-4D720C9A2ED9} => not found
HKLM\System\CurrentControlSet\Services\taphss6 => removed successfully
taphss6 => service removed successfully
HKLM\System\CurrentControlSet\Services\VGPU => removed successfully
VGPU => service removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-4058849917-871124441-1829732832-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer" => removed successfully
"HKU\S-1-5-21-4058849917-871124441-1829732832-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-4058849917-871124441-1829732832-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows


========= End of CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

No se puede vaciar la cach‚ de resoluci¢n de DNS: Error de una funci¢n durante la ejecuci¢n.


========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
(C) Copyright 2000-2006 Microsoft Corp.

BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

Unable to connect to BITS - 0x8007042c

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 81438433 B
Java, Flash, Steam htmlcache => 2098 B
Windows/system/drivers => 17299850 B
Edge => 0 B
Chrome => 48727766 B
Firefox => 1143576860 B
Opera => 5783042 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 66356 B
systemprofile32 => 66088 B
LocalService => 0 B
NetworkService => 5314 B
Jose => 27046843 B

RecycleBin => 163731 B
EmptyTemp: => 1.2 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:58:50 ====

#14

Bueno, yo ya me doy por satisfecho con tu trabajo y guia, muchas gracias y la pc anda un avion!!!.


#15

Para eliminar las herramientas usadas en la desinfección, realizas:

  • Descargas y Ejecutas >> Delfix, en tu escritorio.

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7 /8 /10,presiona clic derecho y selecciona >>;Ejecutar como Administrador.)

  • Marca solamente la casilla Remove disinfection tools

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

Si queda alguna herramienta, la desinstalas desde panel de Windows y aquellas que no estén listadas, se eliminan directamente.


Me alegro de haberte podido ayudar! :+1:


TEMA SOLUCIONADO


#16

Este tema se cerró automáticamente 2 días después del último post. No se permiten nuevas respuestas.