Virus lanegoz.ru


#1

Necesito ayuda urgente ya que cada vez que estoy navegando se abre esta pagina lanegoz o similares rusas, la internet me anda pesimo y sube el ping a cada rato, help !


#2

Hola Gustavo_Caro

Realiza los siguientes pasos, aunque hayas hecho alguno, sin cambiar el orden:

1) Descarga, actualiza y ejecuta Malwarebytes’ Anti-Malware, revisa en detalle el manual, para que sepas usarlo y configurarlo.

  • Realiza un Análisis de amenazas, actualizando si te lo pide.
  • Pulsar en “Cuarentena seleccionado” para enviarlo a la cuarentena y Reinicias el sistema.
  • En el apartado del manual Informes :arrow_forward: Informe de análisis encontrarás el reporte de MBAM, clic en Exportar :arrow_forward: Copiar al portapapeles.

2) Descarga AdwCleaner | InfoSpyware en el escritorio.

  • Desactiva temporalmente el Antivirus :arrow_forward: Cómo deshabilitar temporalmente su Antivirus.
  • Cierra también todos los programas que tengas abiertos.
  • Ejecuta Adwcleaner.exe (Si usas Windows Vista/7 u 8 presiona clic derecho y selecciona "Ejecutar como Administrador".)
  • Pulsar en el botón Escanear, y espera a que se realice el proceso, inmediatamente pulsa sobre el botón Limpiar.
  • Espera a que se complete y sigue las instrucciones, si te pidiera Reiniciar el sistema Aceptas.
  • Guardas el reporte que te aparecerá, para copiarlo y pegarlo en tu próxima respuesta.
  • El informe también se puede encontrar en C:\AdwCleaner\AdwCleaner[C1].txt

3) Descarga CCleaner

  • Instala Ccleaner
  • Abres Ccleaner en la pestaña limpiador dejas como esta configurada predeterminadamente, haces clic en analizar esperas que termine :arrow_forward: clic en ejecutar limpiador
  • Clic en la pestaña Registro :arrow_forward: clic en buscar problemas esperas que termine :arrow_forward: clic en Reparar Seleccionadas y haces una copia de seguridad
  • Vuelves a darle clic en buscar problemas hasta que no encuentre ninguno.

Pega los reportes de Malwarebytes y AdwCleaner y comentas como va el problema.

Un saludo


#4

Malwarebytes
www.malwarebytes.com

-Detalles del registro-
Fecha del análisis: 23/1/19
Hora del análisis: 13:47
Archivo de registro: 918e8dce-1f2e-11e9-beb2-40167ee6ff88.json

-Información del software-
Versión: 3.6.1.2711
Versión de los componentes: 1.0.508
Versión del paquete de actualización: 1.0.8934
Licencia: Gratis

-Información del sistema-
SO: Windows 10 (Build 17134.523)
CPU: x64
Sistema de archivos: NTFS
Usuario: DESKTOP-4O241NA\Gustavo Caro

-Resumen del análisis-
Tipo de análisis: Análisis de amenazas
Análisis iniciado por:: Manual
Resultado: Completado
Objetos analizados: 313933
Amenazas detectadas: 66
Amenazas en cuarentena: 66
Tiempo transcurrido: 4 min, 5 seg

-Opciones de análisis-
Memoria: Activado
Inicio: Activado
Sistema de archivos: Activado
Archivo: Activado
Rootkits: Desactivado
Heurística: Activado
PUP: Detectar
PUM: Detectar

-Detalles del análisis-
Proceso: 1
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\DriverFix.exe, En cuarentena, [3895], [613999],1.0.8934

Módulo: 3
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\DriverFix.exe, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\dwc.dll, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\resources.dll, En cuarentena, [3895], [613999],1.0.8934

Clave del registro: 1
PUP.Optional.DriverFix, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DriverFix_is1, En cuarentena, [3895], [613999],1.0.8934

Valor del registro: 2
PUP.Optional.DriverFix, HKU\S-1-5-21-808367516-1742056278-3576212296-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|DriverFix, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DRIVERFIX_IS1|URLINFOABOUT, En cuarentena, [3895], [614004],1.0.8934

Datos del registro: 0
(No hay elementos maliciosos detectados)

Secuencia de datos: 0
(No hay elementos maliciosos detectados)

Carpeta: 7
PUP.Optional.DriverFix, C:\USERS\GUSTAVO CARO\APPDATA\ROAMING\DRIVERFIX, En cuarentena, [3895], [614002],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Skins, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\PROGRAMDATA\DRIVERFIX, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVERFIX, En cuarentena, [3895], [614000],1.0.8934

Archivo: 52
PUP.Optional.DriverFix, C:\USERS\GUSTAVO CARO\APPDATA\ROAMING\DRIVERFIX\DRIVERFIX.SETTINGS, En cuarentena, [3895], [614002],1.0.8934
PUP.Optional.DriverFix, C:\Users\Gustavo Caro\AppData\Roaming\DriverFix\chdevlst.bin, En cuarentena, [3895], [614002],1.0.8934
PUP.Optional.DriverFix, C:\Users\Gustavo Caro\AppData\Roaming\DriverFix\DriverFix.history, En cuarentena, [3895], [614002],1.0.8934
PUP.Optional.DriverFix, C:\Users\Gustavo Caro\AppData\Roaming\DriverFix\scandata.bin, En cuarentena, [3895], [614002],1.0.8934
PUP.Optional.DriverFix, C:\PROGRAMDATA\DRIVERFIX\DRIVERFIX.URL, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-Black.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-BlackItalic.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-Bold.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-BoldItalic.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-Hairline.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-HairlineItalic.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-Italic.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-Light.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-LightItalic.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\Lato-Regular.ttf, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Fonts\OFL.txt, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\cz.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\da.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\de.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\du.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\es.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\fi.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\fr.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\gr.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\it.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\jp.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\kr.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\no.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\pl.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\pt.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\ru.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\se.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Languages\tr.lng, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Skins\StyleDark.style, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\Resources\Skins\StyleWhite.style, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\dpinst_x64.exe, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\dpinst_x86.exe, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\DriverFix.exe, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\dwc.dll, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\libeay32.dll, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\libssl32.dll, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\main.ico, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\resources.dll, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\unins000.exe, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\uninstall.ico, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\DriverFix\website.ico, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\DOCUMENTS AND SETTINGS\PUBLIC\Desktop\DriverFix.lnk, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\USERS\GUSTAVO CARO\APPDATA\ROAMING\MICROSOFT\INTERNET EXPLORER\QUICK LAUNCH\User Pinned\TaskBar\DriverFix.lnk, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\USERS\PUBLIC\DESKTOP\DriverFix.lnk, En cuarentena, [3895], [613999],1.0.8934
PUP.Optional.DriverFix, C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\DRIVERFIX\DRIVERFIX HOMEPAGE.LNK, En cuarentena, [3895], [614000],1.0.8934
PUP.Optional.DriverFix, C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverFix\DriverFix.lnk, En cuarentena, [3895], [614000],1.0.8934
PUP.Optional.DriverFix, E:\DOWNLOADS\DRIVERFIXWEBDL-6005765297.EXE, En cuarentena, [3895], [613996],1.0.8934

Sector físico: 0
(No hay elementos maliciosos detectados)

WMI: 0
(No hay elementos maliciosos detectados)


(end) 


 # -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2019-01-21.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-23-2019
# Duration: 00:00:01
# OS:       Windows 10 Pro
# Cleaned:  12
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\Tencent
Deleted       C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Tencent
Deleted       C:\Users\Gustavo Caro\AppData\Roaming\Tencent

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\DriverFix
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3506F951-6037-4EBA-84B7-D287F9D9E5DD}
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6F0ECC67-9245-45AE-8C1E-DA1C4D151DA0}
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{1C63125A-7124-450F-BEDA-7B389F0D43AE}
Deleted       HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{10AA2607-E399-47D3-851A-D5323A8FD8AF}
Deleted       HKLM\Software\Classes\METNSD
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.clarochile.cl
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\sucursalvirtual.clarochile.cl
Deleted       HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\clarochile.cl

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2461 octets] - [29/05/2018 02:31:43]
AdwCleaner[C00].txt - [2308 octets] - [29/05/2018 02:32:32]
AdwCleaner[S01].txt - [1564 octets] - [12/06/2018 14:22:35]
AdwCleaner[C01].txt - [1672 octets] - [12/06/2018 14:22:56]
AdwCleaner[S02].txt - [1513 octets] - [13/06/2018 16:29:58]
AdwCleaner[C02].txt - [1679 octets] - [13/06/2018 17:18:34]
AdwCleaner[S03].txt - [1607 octets] - [15/06/2018 23:41:54]
AdwCleaner[C03].txt - [1793 octets] - [15/06/2018 23:44:52]
AdwCleaner[S04].txt - [1292 octets] - [29/06/2018 20:17:41]
AdwCleaner[C04].txt - [1397 octets] - [29/06/2018 20:18:13]
AdwCleaner[S05].txt - [3157 octets] - [23/01/2019 16:29:30]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C05].txt ##########


 # -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build:    12-18-2018
# Database: 2018-12-17.4 (Local)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-23-2019
# Duration: 00:00:00
# OS:       Windows 10 Pro
# Cleaned:  1
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted       C:\ProgramData\Tencent

***** [ Files ] *****

No malicious files cleaned.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

No malicious registry entries cleaned.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [2461 octets] - [29/05/2018 02:31:43]
AdwCleaner[C00].txt - [2308 octets] - [29/05/2018 02:32:32]
AdwCleaner[S01].txt - [1564 octets] - [12/06/2018 14:22:35]
AdwCleaner[C01].txt - [1672 octets] - [12/06/2018 14:22:56]
AdwCleaner[S02].txt - [1513 octets] - [13/06/2018 16:29:58]
AdwCleaner[C02].txt - [1679 octets] - [13/06/2018 17:18:34]
AdwCleaner[S03].txt - [1607 octets] - [15/06/2018 23:41:54]
AdwCleaner[C03].txt - [1793 octets] - [15/06/2018 23:44:52]
AdwCleaner[S04].txt - [1292 octets] - [29/06/2018 20:17:41]
AdwCleaner[C04].txt - [1397 octets] - [29/06/2018 20:18:13]
AdwCleaner[S05].txt - [3157 octets] - [23/01/2019 16:29:30]
AdwCleaner[C05].txt - [3123 octets] - [23/01/2019 16:29:46]
AdwCleaner[S06].txt - [2008 octets] - [23/01/2019 16:31:17]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C06].txt ##########

El adwcleaner lo pasè 2 veces, ya que en la segunda detecto 1 .


#5

Al responder se borra la respuesta, es normal?


#8

Hola

Igual se han eliminado momentáneamente al no poner los reportes entre [code], ahora había 5 respuestas con reporte, he dejado solo una.

Como sigue el problema.

Un saludo


#9

Aun se siguen abriendo paginas solas, con terminacion rusa :confused:


#10

Hola

Descarga Farbar Recovery Scan Tool.en el escritorio, seleccionando la versión adecuada para la arquitectura(32 o 64bits) de tu equipo. :arrow_forward: ¿Cómo saber si mi Windows es de 32 o 64 bits.?

  • Ejecuta FRST.exe.
  • En el mensaje de la ventana del Disclaimer, pulsamos Yes
  • En la ventana principal pulsamos en el botón Scan y esperamos a que concluya el proceso.
  • Se abrirán dos(2) archivos(Logs), Frst.txt y Addition.txt, estos quedaran grabados en el escritorio.

Pon los dos reportes generados.

Debes copiarlos y pegarlos con todo su contenido y usaras varios mensajes si recibes un mensaje de error indicando que es muy largo(mas de 50.000 caracteres aprox.).

Un saludo


#11
FRST.exe

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20.01.2019
Ran by Gustavo Caro (administrator) on DESKTOP-4O241NA (25-01-2019 21:41:04)
Running from C:\Users\Gustavo Caro\Desktop
Loaded Profiles: Gustavo Caro (Available Profiles: Gustavo Caro & CDFAccount)
Platform: Windows 10 Pro Version 1803 17134.523 (X64) Language: Inglés (Estados Unidos)
Default browser: Chrome
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Tencent) E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
(AMD) C:\Windows\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atiesrxx.exe
(AMD) C:\Windows\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atieclxx.exe
() C:\Windows\DAODx.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe
() C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
(Atheros) C:\Windows\SysWOW64\acs.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
() C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
(Wireless) C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\MsMpEng.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1901.7-0\NisSrv.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.23\GoogleCrashHandler64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\TurboVHelp.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amddvr.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Logitech, Inc.) C:\Program Files\Logitech Gaming Software\LAClient\laclient.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\TP-LINK\Utilidad de Cliente Inalambrico TP-LINK\TWCU.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.35\Lightshot.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\AlertHelper.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\amdow.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
() F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClient.exe
() F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClientUx.exe
() F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClientUxRender.exe
() F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClientUxRender.exe
(Microsoft Corporation) C:\Windows\System32\GameBarPresenceWriter.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-11] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8841472 2018-04-14] (Realtek Semiconductor)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18591352 2018-03-19] (Logitech Inc.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [jswtrayutil] => C:\Program Files (x86)\TP-LINK\QSS\jswtrayutil.exe [32871 2011-04-01] ()
HKLM-x32\...\Run: [TWCU] => C:\Program Files (x86)\TP-LINK\Utilidad de Cliente Inalambrico TP-LINK\TWCU.exe [561263 2011-03-28] ()
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2409936 2018-02-14] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2017-04-11] ()
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-11] (Microsoft Corporation)
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3133216 2019-01-04] (Valve Corporation)
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [SideSync] => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe [12476064 2018-03-07] ()
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [Spotify] => C:\Users\Gustavo Caro\AppData\Roaming\Spotify\Spotify.exe [25972968 2018-12-25] (Spotify Ltd)
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [uTorrent] => C:\Users\Gustavo Caro\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-01-17] (BitTorrent Inc.)
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [19645800 2019-01-10] (Piriform Software Ltd)
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [Discord] => C:\Users\Gustavo Caro\AppData\Local\Discord\app-0.0.301\Discord.exe [57816920 2018-04-30] (Discord Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-12] (Google Inc.)
Startup: C:\Users\Gustavo Caro\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2018-09-25]
ShortcutTarget: Twitch.lnk -> C:\Users\Gustavo Caro\AppData\Roaming\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 200.75.0.4 200.75.0.5
Tcpip\..\Interfaces\{069fc00c-315a-48a2-a7a5-dd23c1fa2864}: [DhcpNameServer] 200.75.0.4 200.75.0.5
Tcpip\..\Interfaces\{52eef787-8ae4-49f1-876d-b7e6ea6e0245}: [DhcpNameServer] 200.75.0.4 200.75.0.5
Tcpip\..\Interfaces\{7663b9b6-89e2-4d11-8252-6f263ed2028c}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{7663b9b6-89e2-4d11-8252-6f263ed2028c}: [DhcpNameServer] 200.75.0.4 200.75.0.5
Tcpip\..\Interfaces\{8ca87710-03b6-448d-aa63-8b3e7aec149c}: [DhcpNameServer] 200.75.0.4 200.75.0.5

Internet Explorer:
==================
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cl/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-12-13] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-11-14] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-18] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-18] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-18] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-01-18] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: kasxhkyj.default
FF ProfilePath: C:\Users\Gustavo Caro\AppData\Roaming\Mozilla\Firefox\Profiles\kasxhkyj.default [2019-01-24]
FF Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Gustavo Caro\AppData\Roaming\Mozilla\Firefox\Profiles\kasxhkyj.default\Extensions\@setupvpncom.xpi [2018-07-02]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2018-02-14] (Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-12-13] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-08-15] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2018-02-14] (Adobe Systems)

Chrome: 
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://google.cl/
CHR StartupUrls: Default -> "hxxps://boards.4chan.org/w/","hxxps://www.youtube.com/watch?v=EvazDsAWAno","hxxps://www.reddit.com/r/leagueoflegends","hxxp://www.lolskill.net/game/LAS/panconmoco","hxxp://www.probuilds.net/guide/EUW/2310884659/18995872","hxxps://www.facebook.com/groups/SDLG14/?fref=nf","hxxp://boards.4chan.org/wg/","hxxp://boards.4chan.org/wg/thread/6312763/startpage-and-new-tab-thread-3#p6312811","file:///C:/Users/Cherno/Documents/startpage/index.html"
CHR Profile: C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default [2019-01-25]
CHR Extension: (Presentaciones) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-17]
CHR Extension: (Documentos) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-17]
CHR Extension: (Google Drive) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-17]
CHR Extension: (YouTube) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-17]
CHR Extension: (Form Filler) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\bnjjngeaknajbdcgpfkgnonkmififhfo [2019-01-21]
CHR Extension: (Tampermonkey) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-01-14]
CHR Extension: (LoL Stream Browser) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\edidfaijmhpefkbnobdcepampbncgejp [2018-06-17]
CHR Extension: (Sketch Toy) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ednofnkligfbacmlfggaccfhpkfopojb [2018-06-17]
CHR Extension: (Adobe Acrobat) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-07-11]
CHR Extension: (Video Downloader professional) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2018-08-07]
CHR Extension: (Hojas de cálculo) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-17]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-16]
CHR Extension: (AdBlock) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2019-01-16]
CHR Extension: (Hola Free VPN Proxy Unblocker) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2019-01-25]
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14]
CHR Extension: (Google Keep: notas y listas) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2019-01-22]
CHR Extension: (Flying Paint) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\iaddkdiibkddhdbcmmplkhcpgeinggfo [2018-06-17]
CHR Extension: (Eliminar todos los mensajes para Facebook ™) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\idnpnpdgfopkoibbhemhdinhcbghpokf [2019-01-14]
CHR Extension: (InstaG Downloader) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkdcmgmnegofdddphijckfagibepdlb [2018-07-11]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-17]
CHR Extension: (Gmail) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-06-17]
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-04]
CHR Profile: C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Guest Profile [2019-01-23]
CHR Profile: C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1 [2019-01-23]
CHR Extension: (Presentaciones) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-06-17]
CHR Extension: (Documentos) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2018-06-17]
CHR Extension: (Google Drive) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-06-17]
CHR Extension: (YouTube) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-06-17]
CHR Extension: (Tampermonkey) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2019-01-14]
CHR Extension: (Adobe Acrobat) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2018-07-11]
CHR Extension: (Hojas de cálculo) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-06-17]
CHR Extension: (Documentos de Google sin conexión) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-28]
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14]
CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-06-17]
CHR Extension: (Gmail) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-06-17]
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-06]
CHR Profile: C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\System Profile [2019-01-23]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ACS; C:\Windows\SysWOW64\acs.exe [499796 2011-04-01] (Atheros) [File not signed]
R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atiesrxx.exe [481768 2018-03-23] (AMD)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936728 2018-04-14] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe [951936 2018-04-14] (ASUSTeK Computer Inc.)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe [1360016 2018-04-14] () [File not signed]
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.02.00\AsusFanControlService.exe [1632256 2018-04-14] (ASUSTeK Computer Inc.) [File not signed]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [7212480 2018-09-16] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11012768 2019-01-09] (Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [777856 2018-09-16] (EasyAntiCheat Ltd)
R2 jswpbapi; C:\Program Files (x86)\TP-LINK\QSS\jswpbapi.exe [265216 2011-04-01] (Wireless) [File not signed]
S3 jswpsapi; C:\Program Files (x86)\TP-LINK\QSS\jswpsapi.exe [360529 2011-04-01] (wireless) [File not signed]
R2 LogiRegistryService; C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [202872 2018-03-19] (Logitech Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes)
R2 NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [5352960 2011-04-07] (Native Instruments GmbH) [File not signed]
R2 QMEmulatorService; E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe [342776 2018-06-21] (Tencent)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737448 2018-07-14] (Microsoft Corporation)
S4 ssh-agent; C:\WINDOWS\System32\OpenSSH\ssh-agent.exe [495616 2018-03-10] ()
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
R2 TunnelBearMaintenance; C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [119680 2018-06-19] ()
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\NisSrv.exe [4096976 2019-01-25] (Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MsMpEng.exe [113992 2019-01-25] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atikmdag.sys [41595872 2018-03-23] (Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0326037.inf_amd64_6cad8aeb5717c52d\B326079\atikmpag.sys [546280 2018-03-23] (Advanced Micro Devices, Inc.)
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.6479.123\aow_drv_x64_ev.sys [853776 2018-09-14] (Tencent)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2018-04-14] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2018-04-14] ()
S3 CMUSBDAC; C:\WINDOWS\system32\DRIVERS\CMUSBDAC.sys [3778592 2015-11-26] (C-MEDIA)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2017-01-16] (Samsung Electronics Co., Ltd.)
S3 JSWSCIMD; C:\WINDOWS\system32\DRIVERS\jswscimdx.sys [75264 2011-04-01] (Atheros Communications, Inc.)
R2 LGCoreTemp; C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys [14184 2015-06-21] (Logitech)
R3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2018-03-19] (Logitech Inc.)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [261032 2019-01-25] (Malwarebytes)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [895256 2018-04-14] (Realtek )
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics Co., Ltd.)
S3 ss_conn_usb_driver; C:\WINDOWS\System32\Drivers\ss_conn_usb_driver.sys [43648 2017-01-16] (Samsung Electronics Co., Ltd.)
R3 tap-tb-0901; C:\WINDOWS\System32\drivers\tap-tb-0901.sys [38656 2018-05-16] (The OpenVPN Project)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [46488 2019-01-25] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [343032 2019-01-25] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [63480 2019-01-25] (Microsoft Corporation)
S3 WSIMD; C:\WINDOWS\system32\DRIVERS\wsimdx.sys [75776 2011-04-01] (Atheros Communications, Inc.)
R1 YSDrv; C:\Program Files (x86)\Bignox\BigNoxVM\RT\YSDrv.sys [310536 2018-05-18] (BigNox Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-25 21:41 - 2019-01-25 21:41 - 000025849 _____ C:\Users\Gustavo Caro\Desktop\FRST.txt
2019-01-25 21:39 - 2019-01-25 21:40 - 002428416 _____ (Farbar) C:\Users\Gustavo Caro\Desktop\FRST64.exe
2019-01-23 16:36 - 2019-01-23 16:36 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Roaming\twitch-electron
2019-01-23 16:33 - 2019-01-23 16:33 - 000000880 _____ C:\Users\Public\Desktop\CCleaner.lnk
2019-01-23 16:31 - 2019-01-25 14:11 - 000261032 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-01-23 16:31 - 2019-01-23 16:31 - 000000000 ____D C:\ProgramData\Tencent
2019-01-23 16:24 - 2019-01-23 16:32 - 000000000 ____D C:\Users\Gustavo Caro\Desktop\RESULTADOS VIRUS
2019-01-23 13:48 - 2019-01-23 13:48 - 007320272 _____ (Malwarebytes) C:\Users\Gustavo Caro\Desktop\adwcleaner_7.2.6.0.exe
2019-01-21 19:38 - 2019-01-21 19:38 - 000591314 _____ C:\Users\Gustavo Caro\Desktop\MALLA PSICOLOGIA.pdf
2019-01-21 18:26 - 2019-01-21 18:26 - 000548163 _____ C:\Users\Gustavo Caro\Desktop\Psicologia-web-051218.pdf
2019-01-20 12:21 - 2019-01-20 12:21 - 000000811 _____ C:\Users\Public\Desktop\Epic Games Launcher.lnk
2019-01-18 23:09 - 2019-01-18 23:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office
2019-01-14 14:02 - 2019-01-14 14:02 - 000000002 _____ C:\Users\Gustavo Caro\AppData\Local\imw.ini
2019-01-14 13:23 - 2019-01-18 23:09 - 000002597 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial.lnk
2019-01-14 13:23 - 2019-01-18 23:09 - 000002548 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-01-14 13:23 - 2019-01-18 23:09 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-01-14 13:23 - 2019-01-18 23:09 - 000002502 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-01-14 13:23 - 2019-01-18 23:09 - 000002460 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-01-14 13:23 - 2019-01-18 23:09 - 000002456 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-01-13 13:43 - 2018-09-20 01:12 - 001483576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2019-01-09 16:00 - 2019-01-09 16:00 - 000000000 ___HD C:\$SysReset
2019-01-09 14:21 - 2019-01-09 14:45 - 000000000 ____D C:\Program Files\Recuva
2019-01-09 14:21 - 2019-01-09 14:21 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2019-01-09 14:06 - 2019-01-09 14:06 - 000000000 ____D C:\Users\Gustavo Caro\Desktop\UST 2018
2019-01-08 15:46 - 2019-01-01 10:50 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-01-08 15:46 - 2019-01-01 10:47 - 000225792 _____ (Microsoft Corporation) C:\WINDOWS\system32\windowslivelogin.dll
2019-01-08 15:46 - 2019-01-01 10:46 - 012710912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-01-08 15:46 - 2019-01-01 10:45 - 000714752 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2019-01-08 15:46 - 2019-01-01 10:45 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcredprov.dll
2019-01-08 15:46 - 2019-01-01 10:43 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-01-08 15:46 - 2019-01-01 10:20 - 011902976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-01-08 15:46 - 2019-01-01 10:20 - 000165888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windowslivelogin.dll
2019-01-08 15:46 - 2019-01-01 10:18 - 000500736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2019-01-08 15:46 - 2019-01-01 10:17 - 000231936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcredprov.dll
2019-01-08 15:46 - 2019-01-01 04:14 - 001221432 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-01-08 15:46 - 2019-01-01 04:14 - 001063224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2019-01-08 15:46 - 2019-01-01 04:14 - 001029944 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-01-08 15:46 - 2019-01-01 04:14 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-01-08 15:46 - 2019-01-01 04:14 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-01-08 15:46 - 2019-01-01 04:14 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-01-08 15:46 - 2019-01-01 04:13 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-01-08 15:46 - 2019-01-01 04:13 - 001363536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2019-01-08 15:46 - 2019-01-01 04:13 - 000709728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-01-08 15:46 - 2019-01-01 04:13 - 000436024 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-01-08 15:46 - 2019-01-01 04:13 - 000170808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2019-01-08 15:46 - 2019-01-01 04:12 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-01-08 15:46 - 2019-01-01 04:12 - 007520104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-01-08 15:46 - 2019-01-01 04:12 - 002765344 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-01-08 15:46 - 2019-01-01 04:12 - 002465792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-01-08 15:46 - 2019-01-01 04:12 - 002421288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-01-08 15:46 - 2019-01-01 04:12 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-01-08 15:46 - 2019-01-01 04:12 - 000268304 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2019-01-08 15:46 - 2019-01-01 04:12 - 000128824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2019-01-08 15:46 - 2019-01-01 04:12 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-01-08 15:46 - 2019-01-01 03:55 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-01-08 15:46 - 2019-01-01 03:50 - 022715392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-01-08 15:46 - 2019-01-01 03:50 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-01-08 15:46 - 2019-01-01 03:48 - 000342528 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserexport.exe
2019-01-08 15:46 - 2019-01-01 03:48 - 000081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2019-01-08 15:46 - 2019-01-01 03:48 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2019-01-08 15:46 - 2019-01-01 03:47 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-01-08 15:46 - 2019-01-01 03:47 - 000433152 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2019-01-08 15:46 - 2019-01-01 03:46 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountTokenProvider.dll
2019-01-08 15:46 - 2019-01-01 03:46 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-01-08 15:46 - 2019-01-01 03:46 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-01-08 15:46 - 2019-01-01 03:45 - 007573504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-01-08 15:46 - 2019-01-01 03:45 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-01-08 15:46 - 2019-01-01 03:45 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-01-08 15:46 - 2019-01-01 03:44 - 001708544 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSPhotography.dll
2019-01-08 15:46 - 2019-01-01 03:44 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-01-08 15:46 - 2019-01-01 03:44 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-01-08 15:46 - 2019-01-01 03:44 - 000662528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidprov.dll
2019-01-08 15:46 - 2019-01-01 03:44 - 000456192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2019-01-08 15:46 - 2019-01-01 03:43 - 001805312 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-01-08 15:46 - 2019-01-01 03:42 - 004939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-01-08 15:46 - 2019-01-01 03:42 - 002247680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2019-01-08 15:46 - 2019-01-01 03:42 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2019-01-08 15:46 - 2019-01-01 03:42 - 000717312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2019-01-08 15:46 - 2019-01-01 03:41 - 001159680 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-01-08 15:46 - 2019-01-01 03:41 - 000899072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2019-01-08 15:46 - 2019-01-01 03:41 - 000895488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2019-01-08 15:46 - 2019-01-01 03:41 - 000505344 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 006571584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 002478664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 002253696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 000880048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinTypes.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 000581808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSVideoDSP.dll
2019-01-08 15:46 - 2019-01-01 03:37 - 000381240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-01-08 15:46 - 2019-01-01 03:29 - 022016512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-01-08 15:46 - 2019-01-01 03:22 - 019405312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-01-08 15:46 - 2019-01-01 03:17 - 000153088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountTokenProvider.dll
2019-01-08 15:46 - 2019-01-01 03:16 - 005775872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-01-08 15:46 - 2019-01-01 03:16 - 001361408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSPhotography.dll
2019-01-08 15:46 - 2019-01-01 03:16 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wincorlib.dll
2019-01-08 15:46 - 2019-01-01 03:15 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-01-08 15:46 - 2019-01-01 03:15 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-01-08 15:46 - 2019-01-01 03:15 - 000331264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-01-08 15:46 - 2019-01-01 03:15 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-01-08 15:46 - 2019-01-01 03:14 - 004514816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-01-08 15:46 - 2019-01-01 03:14 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-01-08 15:46 - 2019-01-01 03:14 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2019-01-08 15:46 - 2019-01-01 03:13 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-01-08 15:46 - 2019-01-01 03:13 - 000594432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2019-01-08 15:46 - 2019-01-01 03:13 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-01-08 15:46 - 2019-01-01 03:12 - 001036288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aadtb.dll
2019-01-08 15:46 - 2019-01-01 03:12 - 000795648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2019-01-08 15:46 - 2019-01-01 03:12 - 000778240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2019-01-08 15:46 - 2019-01-01 03:12 - 000516608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidprov.dll
2019-01-08 15:46 - 2019-01-01 02:23 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-01-08 15:46 - 2018-12-19 01:49 - 000352768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2019-01-07 13:10 - 2019-01-07 13:10 - 000002213 _____ C:\Users\Public\Desktop\Smart Switch.lnk
2018-12-30 00:42 - 2018-12-30 00:43 - 000000000 ____D C:\Users\Gustavo Caro\Desktop\That Spidey Life
2018-12-30 00:31 - 2018-12-30 00:31 - 000000000 ____D C:\Users\Gustavo Caro\Desktop\K0TT0
2018-12-30 00:07 - 2018-12-30 00:08 - 000000582 _____ C:\Users\Gustavo Caro\Desktop\CUENTAS IGVUALT.txt
2018-12-28 21:43 - 2019-01-18 23:09 - 000002529 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-12-28 21:43 - 2019-01-18 23:09 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-01-25 21:41 - 2018-06-16 00:52 - 000000000 ____D C:\FRST
2019-01-25 21:41 - 2018-04-11 20:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-01-25 20:20 - 2018-05-25 18:58 - 000004232 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{20C1AD73-CFC7-46C8-AC4D-B2A1689B4BA8}
2019-01-25 17:21 - 2018-05-05 21:31 - 000000000 ____D C:\Users\Public\Logi
2019-01-25 16:04 - 2018-05-25 18:52 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-01-25 14:17 - 2018-05-25 22:43 - 000781156 _____ C:\WINDOWS\system32\perfh00A.dat
2019-01-25 14:17 - 2018-05-25 22:43 - 000152016 _____ C:\WINDOWS\system32\perfc00A.dat
2019-01-25 14:17 - 2018-05-25 19:02 - 001762872 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-01-25 14:17 - 2018-04-11 20:36 - 000000000 ____D C:\WINDOWS\INF
2019-01-25 14:11 - 2018-07-19 00:10 - 000000000 ____D C:\Program Files (x86)\TunnelBear
2019-01-25 14:11 - 2018-05-25 18:58 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-01-25 03:56 - 2018-04-14 23:12 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2019-01-24 15:36 - 2018-05-25 18:59 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Local\D3DSCache
2019-01-24 15:36 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-01-23 20:19 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-01-23 17:11 - 2018-09-25 00:48 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Roaming\Twitch
2019-01-23 16:34 - 2018-11-19 19:43 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Roaming\MPC-HC
2019-01-23 16:34 - 2018-04-14 06:01 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Roaming\uTorrent
2019-01-23 16:34 - 2018-04-14 05:39 - 000000000 ____D C:\Program Files (x86)\Steam
2019-01-23 16:34 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-01-23 16:33 - 2018-06-13 00:13 - 000003936 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-01-23 16:33 - 2018-06-13 00:13 - 000000000 ____D C:\Program Files\CCleaner
2019-01-23 16:31 - 2018-04-14 01:55 - 000065536 _____ C:\WINDOWS\system32\spu_storage.bin
2019-01-23 16:31 - 2018-04-11 18:04 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2019-01-23 13:50 - 2018-04-11 20:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-01-23 00:46 - 2018-04-15 01:51 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Roaming\vlc
2019-01-22 00:07 - 2018-04-14 05:34 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Local\Spotify
2019-01-22 00:04 - 2018-04-14 05:32 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Roaming\Spotify
2019-01-20 12:21 - 2018-06-25 18:06 - 000000811 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epic Games Launcher.lnk
2019-01-20 12:21 - 2018-06-25 18:06 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Local\UnrealEngine
2019-01-18 23:08 - 2018-04-15 02:09 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-01-18 16:49 - 2018-05-30 00:22 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Local\ElevatedDiagnostics
2019-01-18 15:17 - 2018-04-14 03:33 - 000000000 ____D C:\Program Files\rempl
2019-01-14 14:02 - 2018-05-25 18:53 - 000000000 ____D C:\Users\Gustavo Caro
2019-01-13 19:10 - 2018-04-11 20:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-01-09 14:09 - 2018-04-14 01:46 - 000000000 ____D C:\Users\Gustavo Caro\AppData\Local\Packages
2019-01-08 21:08 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-01-08 21:08 - 2018-04-11 20:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-01-08 15:51 - 2018-04-14 03:29 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-01-08 15:49 - 2018-04-14 03:29 - 132790320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-01-05 00:21 - 2018-04-14 05:51 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-01-02 16:41 - 2018-04-11 20:41 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-01-02 16:41 - 2018-04-11 20:41 - 000179600 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-29 02:11 - 2018-07-20 16:49 - 000000000 ____D C:\WINDOWS\Minidump

==================== Files in the root of some directories =======

2018-04-14 05:26 - 2017-08-11 10:54 - 000097496 _____ () C:\Users\Gustavo Caro\Ace32Loader.exe
2018-04-14 05:26 - 2017-08-11 10:54 - 000596696 _____ (Alexander Roshal) C:\Users\Gustavo Caro\Rar.exe
2018-04-14 05:26 - 2017-08-11 10:54 - 000439000 _____ (Alexander Roshal) C:\Users\Gustavo Caro\RarExt.dll
2018-04-14 05:26 - 2017-08-11 10:54 - 000369368 _____ (Alexander Roshal) C:\Users\Gustavo Caro\RarExt32.dll
2018-04-11 20:34 - 2018-04-11 20:34 - 000060416 ____N (Microsoft Corporation) C:\Users\Gustavo Caro\uJiieh.exe
2018-04-14 05:26 - 2017-08-11 10:54 - 000397016 _____ (Alexander Roshal) C:\Users\Gustavo Caro\UnRAR.exe
2018-04-14 05:26 - 2017-08-14 11:56 - 001569736 _____ (Alexander Roshal) C:\Users\Gustavo Caro\WinRAR.exe
2018-04-11 20:34 - 2018-04-11 20:34 - 000060416 ____N (Microsoft Corporation) C:\Users\Gustavo Caro\wRGEy.exe
2019-01-14 14:02 - 2019-01-14 14:02 - 000000002 _____ () C:\Users\Gustavo Caro\AppData\Local\imw.ini
2018-09-30 02:43 - 2018-09-30 02:43 - 000000000 _____ () C:\Users\Gustavo Caro\AppData\Local\oobelibMkey.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\dllhost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\dllhost.exe => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-05-25 18:52

==================== End of FRST.txt ============================

#12

Addition.txt

DefaultAccount (S-1-5-21-808367516-1742056278-3576212296-503 - Limited - Disabled)
Guest (S-1-5-21-808367516-1742056278-3576212296-501 - Limited - Disabled)
Gustavo Caro (S-1-5-21-808367516-1742056278-3576212296-1001 - Administrator - Enabled) => C:\Users\Gustavo Caro
WDAGUtilityAccount (S-1-5-21-808367516-1742056278-3576212296-504 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\uTorrent) (Version: 3.5.5.44994 - BitTorrent Inc.)
7-Zip 18.05 (x64) (HKLM\...\7-Zip) (Version: 18.05 - Igor Pavlov)
Adobe Acrobat Reader DC - Español (HKLM-x32\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.4.1.298 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 18.3.4 - Advanced Micro Devices, Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.13 - Michael Tippach)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.35.1 - Asmedia Technology)
CCleaner (HKLM\...\CCleaner) (Version: 5.52 - Piriform)
Discord (HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Discord) (Version: 0.0.301 - Discord Inc.)
Epic Games Launcher (HKLM-x32\...\{9B504F12-DA3B-4CEC-A6FD-B07D6C1FEA26}) (Version: 1.1.167.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FileASSASSIN (HKLM-x32\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
IllustratorCs6 versión 16.0 (HKLM-x32\...\{B558D09D-AF45-4008-B73B-409706BC7FF8}_is1) (Version: 16.0 - Nws)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Lightshot-5.4.0.35 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.35 - Skillbrains)
LockHunter 3.2, 32/64 bit (HKLM\...\LockHunter_is1) (Version:  - Crystal Rich Ltd)
Logitech Gaming Software 8.98 (HKLM\...\Logitech Gaming Software) (Version: 8.98.218 - Logitech Inc.)
Malwarebytes versión 3.6.1.2711 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.6.1.2711 - Malwarebytes)
Microsoft Office Profesional 2016 - es-es (HKLM\...\ProfessionalRetail - es-es) (Version: 16.0.11231.20080 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.11231.20080 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\OneDriveSetup.exe) (Version: 18.101.0520.0002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.12.25810 (HKLM-x32\...\{e2ee15e2-a480-4bc5-bfb7-e9803d1d9823}) (Version: 14.12.25810.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.12.25810 (HKLM-x32\...\{56e11d69-7cc9-40a5-a4f9-8f6190c4d84d}) (Version: 14.12.25810.0 - Microsoft Corporation)
Mozilla Firefox 61.0.1 (x64 es-CL) (HKLM\...\Mozilla Firefox 61.0.1 (x64 es-CL)) (Version: 61.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 61.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version:  - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version:  - Native Instruments)
Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version:  - Native Instruments)
Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version:  - Native Instruments)
Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version:  - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version:  - Native Instruments)
Nox APP Player (HKLM-x32\...\Nox) (Version: 6.1.0.0 - Duodian Technology Co. Ltd.)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11231.20080 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20080 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11231.20080 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.11231.20080 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0C0A-0000-0000000FF1CE}) (Version: 16.0.11231.20080 - Microsoft Corporation) Hidden
Programa de instalacion QSS (HKLM-x32\...\{439A036F-7B1E-45A8-BE0F-8BFA3381F68C}) (Version: 7.0 - TP-LINK) Hidden
Programa de Instalación QSS (HKLM-x32\...\{523A600F-B521-42E5-A5F1-7867A3E0CDA5}) (Version:  - TP-LINK)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7848 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Revo Uninstaller 2.0.5 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.5 - VS Revo Group, Ltd.)
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.235 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18124.4 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18124.4 - Samsung Electronics Co., Ltd.)
Spotify (HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Spotify) (Version: 1.0.96.181.gf6bc1b6b - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Tencent Gaming Buddy (HKLM-x32\...\MobileGamePC) (Version: 1.0.0.1 - Tencent Technology Company)
TP-LINK Wireless Client Utility (HKLM-x32\...\{B3639A0D-D29C-4F6C-AB59-FCAA34E50589}) (Version: 7.0 - TP-LINK) Hidden
TrueCrypt (HKLM-x32\...\TrueCrypt) (Version: 7.2 - TrueCrypt Foundation)
TunnelBear (HKLM-x32\...\{a9a95925-15a8-4f14-91fa-69c681465077}) (Version: 3.4.0.3 - TunnelBear)
TunnelBear (HKLM-x32\...\{D27CAFDC-4BC2-43D5-869E-AE20CD65C593}) (Version: 3.4.0.3 - TunnelBear) Hidden
Twitch (HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 7.0.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{F3874F6F-EA00-487D-BEAD-5FAA010E78F2}) (Version: 1.15.0.0 - Microsoft Corporation) Hidden
Utilidad de Cliente Inalámbrico TP-LINK  (HKLM-x32\...\{E9E37560-9D7F-4BD1-8D07-D747EC67F733}) (Version:  - TP-LINK)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version:  - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-808367516-1742056278-3576212296-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} =>  -> No File
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} =>  -> No File
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} =>  -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} =>  -> No File
ContextMenuHandlers1: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Users\Gustavo Caro\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Users\Gustavo Caro\rarext32.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers2: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd)
ContextMenuHandlers3-x32: [FAExt] -> {05672D66-9736-42F5-8BEB-FA1DD3CA51C4} => C:\Program Files (x86)\FileASSASSIN\FileASSASSINExt.dll [2007-03-30] (Malwarebytes)
ContextMenuHandlers3-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers4: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2017-07-20] (Crystal Rich Ltd)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-03-22] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} =>  -> No File
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-09-19] (Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Users\Gustavo Caro\rarext.dll [2017-08-11] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Users\Gustavo Caro\rarext32.dll [2017-08-11] (Alexander Roshal)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {020E5C1F-6D7E-43D5-B35C-07EDA418C21A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-18] (Microsoft Corporation)
Task: {0F9BF0DA-0632-41D0-AACF-BBF8BBD0A10D} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2018-03-22] (Advanced Micro Devices, Inc.)
Task: {0FF6BCAC-0267-4EA5-8D7D-5998C2AB1FD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-14] (Adobe Systems Incorporated)
Task: {14C92229-7B3E-450C-A5D8-E357B00573DA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-18] (Microsoft Corporation)
Task: {197B71B8-61A5-48FC-AB7C-C8016E5BA0F1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2019-01-10] (Piriform Software Ltd)
Task: {2ACDE5A6-DFBF-4A0E-8C8F-3276EF1F548A} - System32\Tasks\ASUS\RunDAOD => C:\Windows\DAODx.exe [2009-03-30] ()
Task: {2EF2F45A-C0E3-4F62-861D-2C53E6296D75} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-808367516-1742056278-3576212296-1001 => C:\Users\Gustavo Caro\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {34920A44-D96C-4B1A-BB4D-C66F70C7BDF7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2019-01-18] (Microsoft Corporation)
Task: {39F5E290-439A-4B40-B120-9C6C626A4E4A} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe [2019-01-25] (Microsoft Corporation)
Task: {52F9D61C-A56D-410D-8F94-A2F6B654CCEF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe [2019-01-25] (Microsoft Corporation)
Task: {553BE55D-B223-4E4F-9EA5-277AB874B0BD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2019-01-10] (Piriform Ltd)
Task: {613E3D2D-9BFA-4036-8A47-72390978E277} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {65011265-4A40-4A61-9A09-5A5FA5404146} - System32\Tasks\[email protected]\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {652BBEC5-93F6-4291-B941-DCA66141A6BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-06-14] (Google Inc.)
Task: {655C15B9-8452-4E4B-AAC7-B03F5BE84AD3} - System32\Tasks\AdobeGCInvoker-1.0-DESKTOP-4O241NA-Gustavo Caro => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {6597FEE0-9BAF-4D50-8095-97A2A5856AE2} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [2018-03-22] (Advanced Micro Devices, Inc.)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
Task: {8636589C-BC76-4C14-845A-39A2BC1A06DB} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-09] (Microsoft Corporation)
Task: {975CED73-CE76-4FA0-8C84-A8E61B487222} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe [2019-01-25] (Microsoft Corporation)
Task: {99C32BEA-5EA2-470B-9D7E-19753BB31A07} - System32\Tasks\Microsoft\Windows\Secondary Authentication Factor\BackgroundTaskDeployment => C:\WINDOWS\System32\DeviceCredentialDeployment.exe [2018-04-11] (Microsoft Corporation)
Task: {9F5B06A5-A582-48E7-A567-0A1A575EED13} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite II\USB 3.0 Boost\U3BoostSvr.exe [2011-09-10] ()
Task: {B0A25DD8-8A44-45F9-92A9-7836ECD902BF} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {BA3C4124-DFC0-427D-B189-A5AA61C9DA1D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2019-01-09] (Microsoft Corporation)
Task: {BAB2B7D0-F7FA-46CB-936F-D8FD2FEB4CDA} - System32\Tasks\Microsoft\Windows\Setup\EOSNotify => C:\WINDOWS\system32\EOSNotify.exe
Task: {CE53BB31-F682-4AE2-8EB6-357C929F78D8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2018-06-14] (Google Inc.)
Task: {E6B6A341-ED35-4D6C-A8B9-28DDDCDD7EBC} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2019-01-18] (Microsoft Corporation)
Task: {F1F2DB87-CFB7-4FC3-9F46-CE70044FF1E7} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-808367516-1742056278-3576212296-1002 => C:\Users\Gustavo Caro\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {F45A71DE-DCFB-4495-AD1E-9E604F21BDCF} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-18] (Microsoft Corporation)
Task: {F7D8E6DC-FACE-4C3D-8794-9FA429FEB7D3} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2019-01-18] (Microsoft Corporation)
Task: {F9F2EA99-D9AA-47F4-9EE0-35A458E3FD27} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1901.7-0\MpCmdRun.exe [2019-01-25] (Microsoft Corporation)
Task: {FEF3E0BA-1A11-4AAB-BEE7-C27B9EF3EAD1} - System32\Tasks\ASUS\Easy Update => C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe [2013-10-18] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2018-04-14 02:34 - 2009-03-30 03:32 - 000032768 _____ () C:\Windows\DAODx.exe
2018-04-14 02:04 - 2013-10-18 22:04 - 001426232 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzUpdt.exe
2018-04-11 20:34 - 2018-04-11 20:34 - 000491744 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2018-06-19 20:22 - 2018-06-19 20:22 - 000119680 _____ () C:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe
2018-04-14 02:22 - 2018-04-14 02:21 - 001360016 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.22\AsSysCtrlService.exe
2018-10-11 20:57 - 2018-12-21 02:20 - 002712432 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2018-04-14 02:22 - 2018-04-14 02:22 - 000936728 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
2018-04-11 20:34 - 2018-04-11 20:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-12-12 16:30 - 2018-11-08 23:17 - 002759680 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2019-01-08 15:46 - 2019-01-01 03:42 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2019-01-23 13:44 - 2019-01-23 13:50 - 000182272 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
2019-01-23 13:44 - 2019-01-23 13:50 - 000019456 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\SkypeProxiesAndStubs.dll
2017-12-16 01:17 - 2017-12-16 01:17 - 000015360 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2017-12-16 01:17 - 2017-12-16 01:17 - 002519040 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2015-03-06 21:07 - 2015-03-06 21:07 - 000908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2018-03-19 04:32 - 2018-03-19 04:32 - 001096824 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-06 21:07 - 2015-03-06 21:07 - 000060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2018-03-19 04:32 - 2018-03-19 04:32 - 000241784 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2018-03-19 04:03 - 2018-03-19 04:03 - 000077824 _____ () C:\Program Files\Logitech Gaming Software\LAClient\zlib.dll
2018-03-19 04:03 - 2018-03-19 04:03 - 000144896 _____ () C:\Program Files\Logitech Gaming Software\LAClient\libssh2.dll
2018-12-12 17:02 - 2018-12-12 02:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-12 17:02 - 2018-12-12 02:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2018-04-14 02:42 - 2011-03-28 14:22 - 000561263 _____ () C:\Program Files (x86)\TP-LINK\Utilidad de Cliente Inalambrico TP-LINK\TWCU.exe
2018-10-04 00:50 - 2018-10-04 00:50 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
2019-01-23 13:44 - 2019-01-23 13:45 - 000060416 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
2019-01-23 13:44 - 2019-01-23 13:46 - 010936320 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\LibWrapper.dll
2019-01-23 13:44 - 2019-01-23 13:50 - 002920960 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\skypert.dll
2019-01-23 13:44 - 2019-01-23 13:48 - 000688128 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.37.98.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2019-01-16 16:33 - 2019-01-16 16:34 - 000478720 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2019-01-16 16:33 - 2019-01-16 16:34 - 065903104 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2019-01-16 16:33 - 2019-01-16 16:35 - 000012288 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-11-15 20:16 - 2018-11-15 20:24 - 003715072 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-04-14 17:41 - 2018-04-14 17:49 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-11-15 20:16 - 2018-11-15 20:28 - 000036352 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-20 19:22 - 2018-08-20 19:31 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-08-20 19:22 - 2018-08-20 19:32 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-04-14 17:41 - 2018-04-14 17:49 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2019-01-16 16:33 - 2019-01-16 16:35 - 014186496 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-11-15 20:16 - 2018-11-15 20:23 - 003569152 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\MediaEngine.dll
2019-01-16 16:33 - 2019-01-16 16:33 - 002871296 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-30 21:58 - 2018-08-30 22:12 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 19:49 - 2018-07-27 19:51 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.18112.20010.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-06 20:56 - 2018-11-06 20:57 - 000194048 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
2018-11-06 20:56 - 2018-11-06 20:57 - 002538056 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-11-06 20:56 - 2018-11-06 20:57 - 001754112 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsStore_11810.1001.12.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
2018-12-18 02:17 - 2018-12-19 23:40 - 001436760 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11029.20108.0_x64__8wekyb3d8bbwe\Office.UI.Xaml.Word.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 005086680 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClient.exe
2019-01-25 14:15 - 2019-01-25 14:15 - 001708160 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClientUx.exe
2019-01-25 14:15 - 2019-01-25 14:15 - 000899200 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\LeagueClientUxRender.exe
2018-04-14 02:04 - 2013-10-18 22:04 - 005777616 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EzULIB.dll
2018-04-14 02:04 - 2013-05-08 20:22 - 000208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\ImageHelper.dll
2018-06-19 20:21 - 2018-06-19 20:21 - 000166912 _____ () C:\Program Files (x86)\TunnelBear\TunnelBear.VigilantBear.Wrapper.dll
2018-04-14 02:22 - 2019-01-25 14:11 - 000033792 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2018-04-14 02:22 - 2018-04-14 02:21 - 000104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.02.00\ATKEX.dll
2018-04-14 02:05 - 2018-04-14 02:03 - 000043520 ____N () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\HookKey32.dll
2018-04-14 02:05 - 2013-08-19 21:21 - 000253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TurboV EVO\pngio.dll
2018-04-14 02:42 - 2011-06-16 18:19 - 000282624 _____ () C:\Program Files (x86)\TP-LINK\Utilidad de Cliente Inalambrico TP-LINK\TWCUloc.dll
2018-04-14 02:42 - 2011-04-01 15:35 - 000163840 _____ () C:\Program Files (x86)\TP-LINK\Utilidad de Cliente Inalambrico TP-LINK\oemresloc.dll
2018-04-14 02:04 - 2011-07-12 23:14 - 000147456 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AssistFunc.dll
2018-04-14 02:04 - 2010-10-05 12:22 - 000253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\pngio.dll
2018-04-14 02:04 - 2013-12-04 15:57 - 000870912 _____ () C:\Program Files (x86)\ASUS\AI Suite II\AI Charger+\AIChargerPlus.dll
2018-04-14 02:04 - 2012-10-08 21:07 - 000972288 _____ () C:\Program Files (x86)\ASUS\AI Suite II\BarGadget\BarGadget.dll
2018-04-14 02:04 - 2013-05-08 20:22 - 001040896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\EasyUpdate\EasyUpdt.dll
2018-04-14 02:05 - 2012-06-19 16:56 - 001305600 _____ () C:\Program Files (x86)\ASUS\AI Suite II\MyLogo\MyLogo.dll
2018-04-14 02:05 - 2013-06-24 19:59 - 001173504 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Network iControl\Network iControl.dll
2018-04-14 02:05 - 2012-07-20 13:39 - 001047040 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Probe_II\ProbeII.dll
2018-04-14 02:04 - 2013-04-15 18:19 - 000883712 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\Sensor.dll
2018-04-14 02:04 - 2012-05-29 01:27 - 001622528 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor Graph\SensorGraph.dll
2018-04-14 02:04 - 2011-09-20 00:18 - 001243136 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Settings\Settings.dll
2018-04-14 02:04 - 2011-07-21 13:06 - 000846848 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Splitter\Splitter.dll
2018-04-14 02:04 - 2012-08-29 22:09 - 000875520 _____ () C:\Program Files (x86)\ASUS\AI Suite II\TabGadget\TabGadget.dll
2018-04-14 02:03 - 2018-04-14 02:02 - 000662016 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMLib.dll
2018-04-14 02:04 - 2010-10-05 12:22 - 000208896 _____ () C:\Program Files (x86)\ASUS\AI Suite II\ImageHelper.dll
2018-04-14 02:04 - 2009-08-13 00:15 - 000253952 _____ () C:\Program Files (x86)\ASUS\AI Suite II\Sensor\AlertHelper\pngio.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 000128640 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\yaml.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 000113792 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\zlib.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 002300888 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-patch\rcp-be-lol-patch.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 001363584 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-patcher\rcp-be-patcher.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000584152 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-rso-auth\rcp-be-rso-auth.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000974976 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-login\rcp-be-lol-login.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000450176 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-platform-config\rcp-be-lol-platform-config.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000539096 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-riot-messaging-service\rcp-be-riot-messaging-service.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000722048 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-summoner\rcp-be-lol-summoner.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000431576 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-maps\rcp-be-lol-maps.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000585344 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-game-queues\rcp-be-lol-game-queues.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000460928 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-player-preferences\rcp-be-lol-player-preferences.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000564184 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-game-settings\rcp-be-lol-game-settings.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000512472 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-settings\rcp-be-lol-settings.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000431232 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-game-session\rcp-be-lol-game-session.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000779736 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-gameflow\rcp-be-lol-gameflow.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000405632 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-pre-end-of-game\rcp-be-lol-pre-end-of-game.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000742360 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-sanitizer\rcp-be-sanitizer.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000374744 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-riot-messaging-service\rcp-be-lol-riot-messaging-service.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000475264 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-acs\rcp-be-lol-acs.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000461440 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-player-notifications\rcp-be-player-notifications.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000423552 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-loyalty\rcp-be-lol-loyalty.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000734848 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-collections\rcp-be-lol-collections.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000622720 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-champions\rcp-be-lol-champions.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000421848 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-kr-shutdown-law\rcp-be-lol-kr-shutdown-law.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000685184 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-store\rcp-be-lol-store.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000625792 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-inventory\rcp-be-lol-inventory.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000919000 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-lobby-team-builder\rcp-be-lol-lobby-team-builder.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000539776 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-queue-eligibility\rcp-be-lol-queue-eligibility.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000727000 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-champ-select-legacy\rcp-be-lol-champ-select-legacy.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000544216 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-champ-select\rcp-be-lol-champ-select.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000628184 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-end-of-game\rcp-be-lol-end-of-game.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000892888 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-ranked\rcp-be-lol-ranked.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000616064 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-matchmaking\rcp-be-lol-matchmaking.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000441984 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-spectator\rcp-be-lol-spectator.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 001549952 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-chat\rcp-be-lol-chat.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 001673176 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-lobby\rcp-be-lol-lobby.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000571864 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-loadouts\rcp-be-lol-loadouts.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000419288 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-heartbeat\rcp-be-lol-heartbeat.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000446592 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-shutdown\rcp-be-lol-shutdown.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000895960 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-loot\rcp-be-lol-loot.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000407168 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-kickout\rcp-be-lol-kickout.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000412120 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-license-agreement\rcp-be-lol-license-agreement.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000403928 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-kr-playtime-reminder\rcp-be-lol-kr-playtime-reminder.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000413656 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-game-client-chat\rcp-be-lol-game-client-chat.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000444888 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-active-boosts\rcp-be-lol-active-boosts.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000516056 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-pft\rcp-be-lol-pft.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000568280 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-player-behavior\rcp-be-lol-player-behavior.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000456152 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-suggested-players\rcp-be-lol-suggested-players.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000452736 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-service-status\rcp-be-lol-service-status.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000474584 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-leaver-buster\rcp-be-lol-leaver-buster.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000537216 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-match-history\rcp-be-lol-match-history.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000605656 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-recofriender\rcp-be-recofriender.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000685528 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-clubs\rcp-be-lol-clubs.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000446936 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-clubs-public\rcp-be-lol-clubs-public.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000493696 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-esport-stream-notifications\rcp-be-lol-esport-stream-notifications.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000425600 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-player-level-up\rcp-be-lol-player-level-up.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000409728 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-tencent-qt\rcp-be-lol-tencent-qt.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000466392 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-player-messaging\rcp-be-lol-player-messaging.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000457856 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-purchase-widget\rcp-be-lol-purchase-widget.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000515544 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-personalized-offers\rcp-be-lol-personalized-offers.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000591320 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-recommendations\rcp-be-lol-recommendations.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000393688 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-user-experience\rcp-be-lol-user-experience.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000464856 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-simple-dialog-messages\rcp-be-lol-simple-dialog-messages.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000540800 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-highlights\rcp-be-lol-highlights.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000595928 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-honor-v2\rcp-be-lol-honor-v2.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000434304 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-network-testing\rcp-be-network-testing.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000463320 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-entitlements\rcp-be-entitlements.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000611800 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-missions\rcp-be-lol-missions.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000512472 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-item-sets\rcp-be-lol-item-sets.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000472536 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-email-verification\rcp-be-lol-email-verification.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000450688 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-geoinfo\rcp-be-lol-geoinfo.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000474072 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-content-targeting\rcp-be-lol-content-targeting.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 001294976 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-clash\rcp-be-lol-clash.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000636544 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-replays\rcp-be-lol-replays.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000733824 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-voice-chat\rcp-be-voice-chat.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000655320 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-gcloud-voice-chat\rcp-be-gcloud-voice-chat.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000609752 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-premade-voice\rcp-be-lol-premade-voice.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000511104 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-featured-modes\rcp-be-lol-featured-modes.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000458200 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-npe-rewards\rcp-be-lol-npe-rewards.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000577496 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-npe-tutorial-path\rcp-be-lol-npe-tutorial-path.dll
2019-01-25 14:12 - 2018-11-20 22:46 - 000482264 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-catalog\rcp-be-lol-catalog.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000584832 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-regalia\rcp-be-lol-regalia.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000428160 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-payments\rcp-be-payments.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000535000 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-banners\rcp-be-lol-banners.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000455296 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-trophies\rcp-be-lol-trophies.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000753280 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-perks\rcp-be-lol-perks.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000433280 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-discord-rp\rcp-be-lol-discord-rp.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000503424 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-account-verification\rcp-be-lol-account-verification.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000555648 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-career-stats\rcp-be-lol-career-stats.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000446936 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-worlds-token-card\rcp-be-lol-worlds-token-card.dll
2019-01-25 14:12 - 2019-01-24 14:24 - 000402048 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\Plugins\rcp-be-lol-mode-progression\rcp-be-lol-mode-progression.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 055045760 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\libcef.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 000832640 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\ffmpeg.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 001801344 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\libglesv2.dll
2019-01-25 14:15 - 2019-01-25 14:15 - 000022144 _____ () F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.183\deploy\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\localhost -> localhost

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2015-10-30 04:24 - 2019-01-25 14:11 - 000000029 _____ C:\WINDOWS\system32\drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-808367516-1742056278-3576212296-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Gustavo Caro\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run32: => "ASUS AiChargerPlus Execute"
HKLM\...\StartupApproved\Run32: => "jswtrayutil"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\StartupApproved\Run: => "SideSync"

==================== FirewallRules (Whitelisted) ===============

#13
==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{4A21F318-0A2E-48A5-94A9-647EDFC4FB19}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.)
FirewallRules: [UDP Query User{C81CFBA0-140A-4F47-AC79-8C3C36F74780}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.)
FirewallRules: [TCP Query User{A558410D-86F6-4E8F-82C0-3E7699A2F405}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe ()
FirewallRules: [UDP Query User{89260707-87FA-4D54-BC58-1DD75A5ADD77}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe ()
FirewallRules: [{B8D535EC-06D8-46D1-895B-B1CC5C1F1D02}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe (ASUSTeK Computer Inc.)
FirewallRules: [{0BE3E7B6-982A-418F-93A4-E6F4BC92EB4C}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite II\AI Suite II.exe (ASUSTeK Computer Inc.)
FirewallRules: [TCP Query User{2DFE1A14-A491-4807-801F-6A02EA693814}C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [UDP Query User{C87D0369-C3F8-49C2-A843-6AD7CFF15D76}C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [TCP Query User{E7801C0F-08D7-4248-81EE-995F35B60B30}C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [UDP Query User{E9B016C5-DAAB-4A59-85C5-FAC262D09164}C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\spotify\spotify.exe (Spotify Ltd)
FirewallRules: [{5156B9A9-AA1C-401B-80C4-AF801B8F6049}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [{230DC10F-DBD0-4E9A-8963-52578ED8BCC3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corporation)
FirewallRules: [TCP Query User{7AE69B88-D818-47BD-B5A4-81231805A34E}C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc.)
FirewallRules: [UDP Query User{55C8B87F-1703-4823-856E-CEDFE648EDAC}C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc.)
FirewallRules: [TCP Query User{F818AC76-D4C8-4365-AA0C-03F6B1B27EBB}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.)
FirewallRules: [UDP Query User{C078F027-54DE-4217-BE7F-FFD49697858E}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc.)
FirewallRules: [TCP Query User{ED212FE6-8EC5-4CFB-A3F9-2CDBF62C3F90}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe ()
FirewallRules: [UDP Query User{4F068295-C0B4-4AB8-BC4F-0622AD1174DC}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe ()
FirewallRules: [{BF5F54B5-2F8B-4758-AC5B-CC1686C73577}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{AED7E934-1EEC-4981-B176-12111E7A4DD7}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{849315FB-01AD-4EDF-98AA-709CDF0A8A52}F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [UDP Query User{020A94A7-1133-4599-85A8-53BF80D7762F}F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Allow) F:\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games, Inc.)
FirewallRules: [TCP Query User{5DF05712-9FCD-4227-B78F-D24020653D33}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google Inc.)
FirewallRules: [UDP Query User{D0645200-5BF3-43CC-B6C2-12E4592821FB}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google Inc.)
FirewallRules: [{2B14CEAD-339A-4B99-A781-E6D162CE2E48}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{FEF5DDF4-3823-4746-BF17-C25ED1468A58}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [TCP Query User{DC68A86E-6A3E-44B8-A144-4A275D7EF25C}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google Inc.)
FirewallRules: [UDP Query User{5708BE5F-5FA1-4509-80CB-6F626323DCE8}C:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) C:\program files (x86)\google\chrome\application\chrome.exe (Google Inc.)
FirewallRules: [{4CAB7E16-00ED-49AC-BEFA-B5C8288D45BC}] => (Allow) F:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ()
FirewallRules: [{E2576E2F-03A0-4486-99A1-64EF40EA8CFB}] => (Allow) F:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe ()
FirewallRules: [{17491FDA-2385-47A7-A1DC-34D5CF6AF646}] => (Allow) F:\Steam\steamapps\common\Play With Kizami\game.exe ()
FirewallRules: [{D9D6B2DD-1AEC-490B-AA1C-03835848032C}] => (Allow) F:\Steam\steamapps\common\Play With Kizami\game.exe ()
FirewallRules: [{62A4CC72-96E5-4B87-AEB6-70EAFC85594B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation)
FirewallRules: [{103C53E8-E7B7-4D55-8B6F-36988F4A9273}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation)
FirewallRules: [{DE037FC8-7A94-4F60-ADC1-15487615EC67}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation)
FirewallRules: [{D79DE851-DBAF-4DCE-822A-DC907AADAAB8}] => (Allow) F:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations)
FirewallRules: [{D6130BD6-4695-406B-A81B-93E44541DC32}] => (Allow) F:\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations)
FirewallRules: [TCP Query User{62D79DED-7194-462F-8B09-9EF3EC2D7634}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole GinnoGames, Inc.)
FirewallRules: [UDP Query User{29E1B808-35BE-4716-B8EA-30B36A01375C}F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe] => (Allow) F:\steam\steamapps\common\pubg\tslgame\binaries\win64\tslgame.exe (Bluehole GinnoGames, Inc.)
FirewallRules: [{B8F6D25E-AC5B-42E0-8465-9DCCE9CA54EF}] => (Allow) E:\Program Files\TxGameAssistant\AppMarket\AppMarket.exe (Tencent)
FirewallRules: [{A0D0DA40-5B1E-40F1-A6CC-00921310D0A2}] => (Allow) E:\Program Files\TxGameAssistant\AppMarket\TInst.exe ()
FirewallRules: [{E8E74318-12D3-434E-B169-4435E596C04B}] => (Allow) E:\Program Files\TxGameAssistant\AppMarket\bugreport.exe (腾讯公司)
FirewallRules: [{C442E7E8-E158-4DA3-9676-077BFCEAF1DC}] => (Allow) E:\Program Files\TxGameAssistant\AppMarket\QQExternal.exe ()
FirewallRules: [{69CA485B-BDD9-4C11-93CE-D4F447606827}] => (Allow) E:\Program Files\TxGameAssistant\AppMarket\GameDownload.exe (Tencent)
FirewallRules: [{7891C484-D414-498D-9C63-32AC961C9388}] => (Allow) E:\Program Files\TxGameAssistant\AppMarket\GF186\TUpdate.exe (Tencent)
FirewallRules: [{D938DCF8-4058-4ED7-AA9A-90023DB50871}] => (Allow) E:\Program Files\TxGameAssistant\UI\AndroidEmulator.exe (Tencent)
FirewallRules: [{AB51B7AC-547E-475F-AE5E-38FAAE9AC3F8}] => (Allow) E:\Program Files\TxGameAssistant\UI\adb.exe ()
FirewallRules: [{CCFC60F2-5849-49AA-A59C-C7DECAA045EA}] => (Allow) E:\Program Files\TxGameAssistant\UI\TInst.exe ()
FirewallRules: [{8746A608-DB0B-405A-A167-95858EB66772}] => (Allow) E:\Program Files\TxGameAssistant\UI\bugreport.exe (Tencent)
FirewallRules: [{525FE4CE-4812-4FDA-B656-1434CEB3D320}] => (Allow) E:\Program Files\TxGameAssistant\UI\TxGaDcc.exe (Tencent)
FirewallRules: [TCP Query User{5F2FFD63-1B1C-413F-B84E-3BB2054C39E4}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN)
FirewallRules: [UDP Query User{625ACA34-A25B-495B-8214-000FB650A6F0}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe (VideoLAN)
FirewallRules: [TCP Query User{2CCF8D1E-79A5-4CBF-8E82-62C4D797D0F6}C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc.)
FirewallRules: [UDP Query User{519BBD71-3B54-4759-88F7-F926EC64FD36}C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\gustavo caro\appdata\roaming\utorrent\utorrent.exe (BitTorrent Inc.)
FirewallRules: [{C9EB18CA-3402-40D4-8EE1-DA9E1E51DA3E}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [{1581DCC7-ABE4-4029-88F1-2C27365550AB}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corporation)
FirewallRules: [TCP Query User{6CD85E86-41E5-4978-888D-1FA554973773}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Block) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe ()
FirewallRules: [UDP Query User{66AEBAD4-3119-446E-BB20-40508C03817E}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe] => (Block) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.175\deploy\leagueclient.exe ()
FirewallRules: [{5295C8E0-DEF3-48B5-929E-C844D95C58F4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
FirewallRules: [{6B510F24-984D-499B-908B-6234A54C664A}] => (Allow) C:\WINDOWS\SysWOW64\msiexec.exe (Microsoft Corporation)
FirewallRules: [{41AE3743-5EE0-4489-B3DB-E5570823E3F6}] => (Allow) C:\Users\Gustavo Caro\uJiieh.exe (Microsoft Corporation)
FirewallRules: [{73A43E14-C5C2-4848-B51D-CFD6510DA73C}] => (Allow) C:\Users\Gustavo Caro\wRGEy.exe (Microsoft Corporation)
FirewallRules: [{99061E6A-318B-4DFB-9153-3CABB6E558B5}] => (Allow) C:\WINDOWS\SysWOW64\tracert.exe (Microsoft Corporation)
FirewallRules: [TCP Query User{753216C3-F510-4AE3-A570-7396F5622796}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CEABEBB5-03B5-4EAA-83B6-9D2A14030235}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{70C0A1C8-DBD5-4485-AD41-8DEF0262C939}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3B56E869-A751-4093-A098-B0848DCAE33A}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [{7585CB2D-BD10-45FB-80A5-A46A33EF34E3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [{2BA20C57-1235-4E35-BBEA-1CEFDFD33761}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Ltd)
FirewallRules: [TCP Query User{50AE4081-E9E0-4F15-AA28-FC0A12C8C2A7}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe ()
FirewallRules: [UDP Query User{2AF37F83-5017-466B-8262-4B7A28E7FE3E}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.182\deploy\leagueclient.exe ()
FirewallRules: [TCP Query User{CDE8D2E2-2A99-4816-9500-8B6CE656E6A1}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe ()
FirewallRules: [UDP Query User{110390D3-1389-4DD3-A2A0-2037853C3250}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.183\deploy\leagueclient.exe ()

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (01/25/2019 02:14:49 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa ShellExperienceHost.exe, versión 10.0.17134.1, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: 1b20

Hora de inicio: 01d4b4d0fe96d2a5

Hora de finalización: 4294967295

Ruta de la aplicación: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe

Identificador de informe: 8151bd41-5af5-4c98-8e93-68d014244b50

Nombre completo de paquete con errores: Microsoft.Windows.ShellExperienceHost_10.0.17134.112_neutral_neutral_cw5n1h2txyewy

Identificador de aplicación relativa del paquete con errores: App

Error: (01/22/2019 02:05:06 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa LeagueClient.exe, versión 9.1.259.4551, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: 248

Hora de inicio: 01d4b20fe8f5c63f

Hora de finalización: 3

Ruta de la aplicación: F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.180\deploy\LeagueClient.exe

Identificador de informe: 599d1b08-399b-49d2-8cae-c0fe54a3d833

Nombre completo de paquete con errores: 

Identificador de aplicación relativa del paquete con errores:

Error: (01/22/2019 02:05:02 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa LeagueClient.exe, versión 9.1.259.4551, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: e08

Hora de inicio: 01d4b20fe933a1a9

Hora de finalización: 3

Ruta de la aplicación: F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.180\deploy\LeagueClient.exe

Identificador de informe: acf15e2b-1658-4de8-bb02-4a3e0a90226d

Nombre completo de paquete con errores: 

Identificador de aplicación relativa del paquete con errores:

Error: (01/22/2019 02:04:54 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa LeagueClient.exe, versión 9.1.259.4551, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: 1088

Hora de inicio: 01d4b20fe96394f7

Hora de finalización: 3

Ruta de la aplicación: F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.180\deploy\LeagueClient.exe

Identificador de informe: 591f69e8-3af2-4e56-b32d-aa5b24f8ac47

Nombre completo de paquete con errores: 

Identificador de aplicación relativa del paquete con errores:

Error: (01/22/2019 02:04:46 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa LeagueClient.exe, versión 9.1.259.4551, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: d88

Hora de inicio: 01d4b20ff726523e

Hora de finalización: 3

Ruta de la aplicación: F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.180\deploy\LeagueClient.exe

Identificador de informe: b1074043-706e-49e0-8792-f00ce1531204

Nombre completo de paquete con errores: 

Identificador de aplicación relativa del paquete con errores:

Error: (01/22/2019 02:03:15 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: El programa LeagueClient.exe, versión 9.1.259.4551, dejó de interactuar con Windows y se cerró. Para ver si hay más información disponible acerca del problema, comprueba el historial de problemas en la sección Seguridad y mantenimiento del Panel de control.

Identificador de proceso: 2e50

Hora de inicio: 01d4b20fb8612dfa

Hora de finalización: 3

Ruta de la aplicación: F:\Riot Games\League of Legends\RADS\projects\league_client\releases\0.0.0.180\deploy\LeagueClient.exe

Identificador de informe: c4a011df-e607-4cd0-9eb8-9be4e8d940d3

Nombre completo de paquete con errores: 

Identificador de aplicación relativa del paquete con errores:

Error: (01/22/2019 02:01:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nombre de la aplicación con errores: ShellExperienceHost.exe, versión: 10.0.17134.1, marca de tiempo: 0x5ace103a
Nombre del módulo con errores: Windows.UI.Xaml.dll, versión: 10.0.17134.376, marca de tiempo: 0x35659a8d
Código de excepción: 0xc000027b
Desplazamiento de errores: 0x00000000006a56b2
Identificador del proceso con errores: 0x1a4c
Hora de inicio de la aplicación con errores: 0x01d4b1bb161be71f
Ruta de acceso de la aplicación con errores: C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Ruta de acceso del módulo con errores: C:\Windows\System32\Windows.UI.Xaml.dll
Identificador del informe: 88afd524-6b34-4cca-8b32-8125b85bbec2
Nombre completo del paquete con errores: Microsoft.Windows.ShellExperienceHost_10.0.17134.112_neutral_neutral_cw5n1h2txyewy
Identificador de aplicación relativa del paquete con errores: App


System errors:
=============
Error: (01/25/2019 06:12:57 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4O241NA)
Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 y APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 al usuario DESKTOP-4O241NA\Gustavo Caro con SID (S-1-5-21-808367516-1742056278-3576212296-1001) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/25/2019 02:13:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos application-specific no concede el permiso Launch Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscDataProtection
 y APPID 
Unavailable
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/25/2019 02:13:20 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos application-specific no concede el permiso Launch Local para la aplicación de servidor COM con CLSID 
Windows.SecurityCenter.WscBrokerManager
 y APPID 
Unavailable
 al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/25/2019 02:12:46 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4O241NA)
Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 y APPID 
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 al usuario DESKTOP-4O241NA\Gustavo Caro con SID (S-1-5-21-808367516-1742056278-3576212296-1001) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy (S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/25/2019 02:12:35 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN no se pudo iniciar.

Ruta de acceso del módulo: C:\WINDOWS\system32\athExt.dll
Código de error: 126

Error: (01/25/2019 02:12:30 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: El módulo de extensibilidad de WLAN no se pudo iniciar.

Ruta de acceso del módulo: C:\WINDOWS\system32\athExt.dll
Código de error: 126

Error: (01/25/2019 02:11:37 PM) (Source: DCOM) (EventID: 10016) (User: DESKTOP-4O241NA)
Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 y APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 al usuario DESKTOP-4O241NA\Gustavo Caro con SID (S-1-5-21-808367516-1742056278-3576212296-1001) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

Error: (01/25/2019 02:11:19 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: La configuración de permisos application-specific no concede el permiso Activation Local para la aplicación de servidor COM con CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 y APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 al usuario NT AUTHORITY\LOCAL SERVICE con SID (S-1-5-19) en la dirección LocalHost (Using LRPC) que se ejecuta en el contenedor de aplicaciones con SID Unavailable (Unavailable). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


Windows Defender:
===================================
Date: 2019-01-20 02:17:55.188
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {67648EDD-B000-41E1-99CB-7499A3B7B30B}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-01-17 01:45:32.422
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {5367486B-F9BB-4F5D-AC66-C7BA07EC7B14}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-01-17 01:40:49.661
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {2578B673-BB68-4DD9-96C8-7495C4C87BB3}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-01-14 14:00:20.115
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {982FD689-C047-4407-B9AC-F4788CDC7F97}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2018-12-19 23:44:35.803
Description: 
El examen de Antivirus de Windows Defender se detuvo antes de completarse.
Id. de examen: {0813121B-5129-42DA-B86C-FDAF1F1905BB}
Tipo de examen: Antimalware
Parámetros de examen: Examen rápido
Usuario: NT AUTHORITY\SYSTEM

Date: 2019-01-21 16:07:00.691
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.283.3388.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15500.2
Código de error: 0x8024402c
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 

Date: 2019-01-18 15:17:13.584
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.283.3177.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15500.2
Código de error: 0x80240016
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 

Date: 2018-11-28 00:42:10.973
Description: 
Antivirus de Windows Defender encontró un error al intentar actualizar las firmas.
Nueva versión de firma: 
Versión de firma anterior: 1.281.943.0
Origen de actualización: Servidor de Microsoft Update
Tipo de firma: AntiVirus
Tipo de actualización: Completa
Usuario: NT AUTHORITY\SYSTEM
Versión de motor actual: 
Versión de motor anterior: 1.1.15400.5
Código de error: 0x80240438
Descripción del error: An unexpected problem occurred while checking for updates. For information on installing or troubleshooting updates, see Help and Support. 

CodeIntegrity:
===================================

Date: 2018-10-18 23:47:19.864
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-18 23:47:19.823
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-18 23:47:19.504
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-10-18 23:47:19.504
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-06-26 22:51:37.684
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-06-26 22:51:37.683
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-06-19 18:23:23.293
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

Date: 2018-06-19 18:23:23.293
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

==================== Memory info =========================== 

Processor: AMD FX(tm)-8350 Eight-Core Processor 
Percentage of memory in use: 52%
Total physical RAM: 8092.84 MB
Available physical RAM: 3873.99 MB
Total Virtual: 12700.84 MB
Available Virtual: 6422.95 MB

==================== Drives ================================

Drive c: (Disco Local SSD 1) (Fixed) (Total:110.01 GB) (Free:44.03 GB) NTFS
Drive d: (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HDD Softwares) (Fixed) (Total:616.08 GB) (Free:285.37 GB) NTFS
Drive f: (Juegos) (Fixed) (Total:314.9 GB) (Free:40.76 GB) NTFS

\\?\Volume{6670f945-0000-0000-0000-100000000000}\ (System Reserved) (Fixed) (Total:0.49 GB) (Free:0.45 GB) NTFS
\\?\Volume{6670f945-0000-0000-0000-20a01b000000}\ () (Fixed) (Total:0.46 GB) (Free:0.09 GB) NTFS
\\?\Volume{6670f945-0000-0000-0000-c0bd1b000000}\ () (Fixed) (Total:0.82 GB) (Free:0.46 GB) NTFS
\\?\Volume{3bac0390-0000-0000-0000-400b9a000000}\ () (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 111.8 GB) (Disk ID: 6670F945)
Partition 1: (Active) - (Size=500 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=110 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=473 MB) - (Type=27)
Partition 4: (Not Active) - (Size=843 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 3BAC0390)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=616.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=314.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


#14

Ya te respondí con los reportes, el problema aun persiste :frowning:


#15

Hola

:arrow_forward: MUY Importante :arrow_backward: Realiza una copia de seguridad del registro :

  • Para hacerlo descarga :arrow_forward: DelFix.exe( en tu escritorio).

  • Doble clic para ejecutarlo.(Si usas Windows Vista/7/8 o 10 presiona clic derecho y selecciona -Ejecutar como Administrador-).

  • Atención, ahora marca/selecciona únicamente la casilla "Create registry backup", las demás NO.

  • Pulsar en Run.

Se abrirá el informe (DelFix.txt), guárdalo por si fuera necesario y cierra la herramienta.

:warning: Con los demás programas cerrados ve a :arrow_forward: Inicio :arrow_forward: Ejecutar :arrow_forward: y escribe Notepad.exe.

  • Ahora debes copiar y pegar los códigos/líneas que están en el interior del recuadro de más abajo, dentro del Notepad.
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
(Tencent) E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [uTorrent] => C:\Users\Gustavo Caro\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-01-17] (BitTorrent Inc.)
FF Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Gustavo Caro\AppData\Roaming\Mozilla\Firefox\Profiles\kasxhkyj.default\Extensions\@setupvpncom.xpi [2018-07-02]
CHR StartupUrls: Default -> "hxxps://boards.4chan.org/w/","hxxps://www.youtube.com/watch?v=EvazDsAWAno","hxxps://www.reddit.com/r/leagueoflegends","hxxp://www.lolskill.net/game/LAS/panconmoco","hxxp://www.probuilds.net/guide/EUW/2310884659/18995872","hxxps://www.facebook.com/groups/SDLG14/?fref=nf","hxxp://boards.4chan.org/wg/","hxxp://boards.4chan.org/wg/thread/6312763/startpage-and-new-tab-thread-3#p6312811","file:///C:/Users/Cherno/Documents/startpage/index.html"
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14]
CHR Extension: (InstaG Downloader) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkdcmgmnegofdddphijckfagibepdlb [2018-07-11]
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-04]
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14]
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-06]
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.6479.123\aow_drv_x64_ev.sys [853776 2018-09-14] (Tencent)
2019-01-23 16:31 - 2019-01-23 16:31 - 000000000 ____D C:\ProgramData\Tencent
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} =>  -> No File
Task: {65011265-4A40-4A61-9A09-5A5FA5404146} - System32\Tasks\[email protected]\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
FirewallRules: [TCP Query User{753216C3-F510-4AE3-A570-7396F5622796}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CEABEBB5-03B5-4EAA-83B6-9D2A14030235}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{70C0A1C8-DBD5-4485-AD41-8DEF0262C939}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3B56E869-A751-4093-A098-B0848DCAE33A}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END

Guárdalo bajo el nombre de FIXLIST.TXT en el escritorio :arrow_backward: Esto es muy importante.

:o: Nota :o: Es importante que la herramienta FRST.exe (Farbar Recovery Scanner Tool) y FIXLIST.TXT se encuentren en la misma ubicación (escritorio) o si no, no trabajara.


  • Ejecuta FRST.exe.(Si usas Windows Vista/7/8 o 10, presiona clic derecho y seleccionas -Ejecutar como Administrador-).
  • Presionar el botón FIX y aguardar a que termine.
  • La Herramienta guardara el reporte de reparación en el escritorio (FIXLOG.TXT).

Pega el contenido de este fichero en tu próxima respuesta.

Reiniciar el equipo y comprobar su funcionamiento en relación al problema planteado y comentarlo.

Un saludo


#16

Fix result of Farbar Recovery Scan Tool (x64) Version: 27.01.2019
Ran by Gustavo Caro (28-01-2019 00:52:39) Run:3
Running from C:\Users\Gustavo Caro\Desktop
Loaded Profiles: Gustavo Caro (Available Profiles: Gustavo Caro & CDFAccount)
Boot Mode: Normal
==============================================

fixlist content:
*****************
START
CREATERESTOREPOINT:
CLOSEPROCESSES:
(Tencent) E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe
HKU\S-1-5-21-808367516-1742056278-3576212296-1001\...\Run: [uTorrent] => C:\Users\Gustavo Caro\AppData\Roaming\uTorrent\uTorrent.exe [1908920 2019-01-17] (BitTorrent Inc.)
FF Extension: (SetupVPN - Lifetime Free VPN) - C:\Users\Gustavo Caro\AppData\Roaming\Mozilla\Firefox\Profiles\kasxhkyj.default\Extensions\@setupvpncom.xpi [2018-07-02]
CHR StartupUrls: Default -> "hxxps://boards.4chan.org/w/","hxxps://www.youtube.com/watch?v=EvazDsAWAno","hxxps://www.reddit.com/r/leagueoflegends","hxxp://www.lolskill.net/game/LAS/panconmoco","hxxp://www.probuilds.net/guide/EUW/2310884659/18995872","hxxps://www.facebook.com/groups/SDLG14/?fref=nf","hxxp://boards.4chan.org/wg/","hxxp://boards.4chan.org/wg/thread/6312763/startpage-and-new-tab-thread-3#p6312811","file:///C:/Users/Cherno/Documents/startpage/index.html"
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14]
CHR Extension: (InstaG Downloader) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkdcmgmnegofdddphijckfagibepdlb [2018-07-11]
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-04]
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14]
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-06]
R2 aow_drv; E:\Program Files\TxGameAssistant\UI\2.0.6479.123\aow_drv_x64_ev.sys [853776 2018-09-14] (Tencent)
2019-01-23 16:31 - 2019-01-23 16:31 - 000000000 ____D C:\ProgramData\Tencent
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} =>  -> No File
Task: {65011265-4A40-4A61-9A09-5A5FA5404146} - System32\Tasks\[email protected]\Windows64Professional => wmic [Argument = path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate]
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-11] ()
FirewallRules: [TCP Query User{753216C3-F510-4AE3-A570-7396F5622796}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{CEABEBB5-03B5-4EAA-83B6-9D2A14030235}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe No File
FirewallRules: [TCP Query User{70C0A1C8-DBD5-4485-AD41-8DEF0262C939}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File
FirewallRules: [UDP Query User{3B56E869-A751-4093-A098-B0848DCAE33A}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe] => (Allow) F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe No File

HOSTS:
REMOVEPROXY:
EMPTYTEMP:
CMD: netsh winsock reset
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: bitsadmin /reset /allusers
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh int ipv4 reset
CMD: netsh int ipv6 reset
END
*****************

Error: (0) Failed to create a restore point.
Processes closed successfully.
E:\Program Files\TxGameAssistant\AppMarket\QMEmulatorService.exe => No running process found
"HKU\S-1-5-21-808367516-1742056278-3576212296-1001\Software\Microsoft\Windows\CurrentVersion\Run\\uTorrent" => removed successfully
C:\Users\Gustavo Caro\AppData\Roaming\Mozilla\Firefox\Profiles\kasxhkyj.default\Extensions\@setupvpncom.xpi => moved successfully
"Chrome StartupUrls" => removed successfully
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14] => Error: No automatic fix found for this entry.
CHR Extension: (InstaG Downloader) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\jnkdcmgmnegofdddphijckfagibepdlb [2018-07-11] => Error: No automatic fix found for this entry.
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-04] => Error: No automatic fix found for this entry.
CHR Extension: (MyJSCript) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gpabpfikknflecblchhfkpkcpilbkfcd [2019-01-14] => Error: No automatic fix found for this entry.
CHR Extension: (Chrome Media Router) - C:\Users\Gustavo Caro\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-06] => Error: No automatic fix found for this entry.
aow_drv => Unable to stop service.
HKLM\System\CurrentControlSet\Services\aow_drv => removed successfully
aow_drv => service removed successfully
C:\ProgramData\Tencent => moved successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\AccExt => removed successfully
HKLM\Software\Classes\CLSID\{2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => not found
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65011265-4A40-4A61-9A09-5A5FA5404146}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65011265-4A40-4A61-9A09-5A5FA5404146}" => removed successfully
C:\WINDOWS\System32\Tasks\[email protected]\Windows64Professional => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\[email protected]\Windows64Professional" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65B85F6F-35B3-4459-A179-28255D5B7B25}" => removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65B85F6F-35B3-4459-A179-28255D5B7B25}" => removed successfully
C:\WINDOWS\System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\HelloFace\FODCleanupTask" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{753216C3-F510-4AE3-A570-7396F5622796}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{CEABEBB5-03B5-4EAA-83B6-9D2A14030235}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.180\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{70C0A1C8-DBD5-4485-AD41-8DEF0262C939}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe" => removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{3B56E869-A751-4093-A098-B0848DCAE33A}F:\riot games\league of legends\rads\projects\league_client\releases\0.0.0.181\deploy\leagueclient.exe" => removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-808367516-1742056278-3576212296-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-808367516-1742056278-3576212296-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully


========= End of RemoveProxy: =========


========= netsh winsock reset =========


El cat logo Winsock se restableci¢ correctamente.
Debe reiniciar el equipo para completar el restablecimiento.


========= End of CMD: =========


========= ipconfig /renew =========


Configuraci¢n IP de Windows

No se puede realizar ninguna operaci¢n en Ethernet mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Ethernet 2 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Local Area Connection* 12 mientras los medios
est‚n desconectados.
No se puede realizar ninguna operaci¢n en Bluetooth Network Connection mientras los medios
est‚n desconectados.

Adaptador de Ethernet Ethernet:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de Ethernet Ethernet 2:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Local Area Connection* 12:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

Adaptador de LAN inal mbrica Wi-Fi:

   Sufijo DNS espec¡fico para la conexi¢n. . : Home
   V¡nculo: direcci¢n IPv6 local. . . : fe80::5414:aa0b:9cd6:e94b%13
   Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.1.3
   M scara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . : 192.168.1.1

Adaptador de Ethernet Bluetooth Network Connection:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS espec¡fico para la conexi¢n. . : 

========= End of CMD: =========


========= ipconfig /flushdns =========


Configuraci¢n IP de Windows

Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

========= End of CMD: =========


========= bitsadmin /reset /allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

Unable to cancel {2B29A9B6-4870-4675-904D-9584920C2EA7}.
0 out of 1 jobs canceled.

========= End of CMD: =========


========= netsh advfirewall reset =========

Aceptar


========= End of CMD: =========


========= netsh advfirewall set allprofiles state ON =========

Aceptar


========= End of CMD: =========


========= netsh int ipv4 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


========= netsh int ipv6 reset =========

Reenv¡o de compartimiento se restableci¢ correctamente.
Compartimiento se restableci¢ correctamente.
Protocolo de control se restableci¢ correctamente.
Solicitud de secuencia eco se restableci¢ correctamente.
Global se restableci¢ correctamente.
Interfaz se restableci¢ correctamente.
Direcci¢n de difusi¢n por proximidad (a se restableci¢ correctamente.
Direcciones de multidifusi¢n se restableci¢ correctamente.
Direcci¢n de unidifusi¢n se restableci¢ correctamente.
Vecino se restableci¢ correctamente.
Ruta de acceso se restableci¢ correctamente.
Posible se restableci¢ correctamente.
Directiva de prefijo se restableci¢ correctamente.
Vecino de proxy se restableci¢ correctamente.
Ruta se restableci¢ correctamente.
Prefijo de sitio se restableci¢ correctamente.
Subinterfaz se restableci¢ correctamente.
Patr¢n de reactivaci¢n se restableci¢ correctamente.
Resolver vecino se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Error al restablecer .
Acceso denegado.

 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
 se restableci¢ correctamente.
Reinicie el equipo para completar esta acci¢n.


========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 71307189 B
Java, Flash, Steam htmlcache => 217956841 B
Windows/system/drivers => 2568448 B
Edge => 13 B
Chrome => 518312528 B
Firefox => 21633672 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
LocalService => 0 B
NetworkService => 6027856 B
NetworkService => 0 B
Gustavo Caro => 17309987 B
CDFAccount => 0 B

RecycleBin => 0 B
EmptyTemp: => 825.8 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 00:53:18 ====


#17

Lamentablemente sigue todo igual y se siguen abriendo links solos, como lanegoz.ru entre otros


#18

Hola

Realiza un análisis con EsetOnline siguiendo el manual >> Manual EsetOnline

Trae el reporte y comenta como sigue el problema.

Un saludo


#19

1/31/2019 2:48:34 AM
Archivos explorados: 391121
Archivos infectados: 9
Amenazas eliminadas: 9
Tiempo total de exploración 01:57:13
Estado de la exploración: Finalizado

#20

Hola

El reporte está incompleto, ponlo enteri para ver que es lo que ha eliminado.

No olvides comentar cómo sigue el problema.

Un saludo


#21

No sè donde encontrar el reporte completo, solo aparecia eso en el documento TXT, y los problemas de las paginas que se abren solas siguen ocurriendo


#22

Hola

En el manual de EsetOnline, en el apartado de Informes se comenta en donde lo puedes localizar y como te debe salir el reporte.

Analiza de nuevo con Frst y traes los dos reportes.

Un saludo


#23
00:45:17 # product=EOS
# version=8
# ESETOnlineScanner_ESL.exe=3.0.17.0
# country="United States"
# lang=13322
00:46:43 Updating
00:46:43 Update Init
00:46:44 Update Download
00:50:19 esets_scanner_reload returned 0
00:50:19 g_uiModuleBuild: 40231
00:50:19 Update Finalize
00:50:19 Call m_esets_charon_send
00:50:19 Call m_esets_charon_destroy
00:50:19 Updated modules version: 40231
00:50:29 Scanner engine: 40231
02:49:12 Call m_esets_charon_send
02:49:12 Call m_esets_charon_destroy
21:07:40 # product=EOS
# version=8
# ESETOnlineScanner_ESL (2).exe=3.0.17.0
# country="United States"
# lang=13322
21:07:41 Call m_esets_charon_send
21:07:41 Call m_esets_charon_destroy
21:07:53 # product=EOS
# version=8
# ESETOnlineScanner_ESL (2).exe=3.0.17.0
# country="United States"
# lang=13322
21:09:42 Updating
21:09:42 Update Init
21:09:52 Update Download
21:18:41 esets_scanner_reload returned 0
21:18:41 g_uiModuleBuild: 40321
21:18:41 Update Finalize
21:18:41 Call m_esets_charon_send
21:18:41 Call m_esets_charon_destroy
21:18:41 Updated modules version: 40321
21:18:51 Scanner engine: 40321
23:28:47 Call m_esets_charon_send
23:28:47 Call m_esets_charon_destroy
23:28:47 Call m_esets_charon_send
23:28:47 Call m_esets_charon_destroy
2/7/2019 23:27:36 PM
Archivos explorados: 378278
Archivos infectados: 0
Amenazas eliminadas: 0
Tiempo total de exploración: 02:08:35
Estado de la exploración: Finalizado