• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 19

    Malwarebytes: Unable to connect the service (Solucionado)

    Hola, tengo un problema con este programa. Hace bastante que lo uso, en su versión gratuita, y jamás tuve problemas. Pero, hace unos días instalé el programa Malwarebytes Anti-Ransomware, y desde ese momento no puedo ...

    1. #1
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      Malwarebytes: Unable to connect the service (Solucionado)

      Hola, tengo un problema con este programa. Hace bastante que lo uso, en su versión gratuita, y jamás tuve problemas. Pero, hace unos días instalé el programa Malwarebytes Anti-Ransomware, y desde ese momento no puedo abrir Malwarebytes.
      Desinstalé ambos programas con Revo Uninstaller free. Volví a instalarlos, pero el problema vuelve a ser el mismo.
      Podría haber buscado ayuda en el foro de Malwarebytes, pero no sé inglés, por eso recurro a este foro. Mis disculpas si este tema ya fue creado.
      Tengo Windows 10 original. El antivirus es Avast free.
      Gracias!

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Ejecuta la herramienta de Malwarebytes y reinicias >> Herramientas de desinstalación de Antivirus, AntiSpyware y Firewall.

      Desinstalas el antirasonware tambien


      me pegas esto, SIN REINSTALAR NADA



      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Hola, gracias por tu ayuda. Reporte de Frst:


      Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-05-2017
      Ran by Valeria (administrator) on VALERIA-PE (27-05-2017 16:54:09)
      Running from C:\Users\Valeria\Desktop
      Loaded Profiles: Valeria (Available Profiles: Valeria & Invitado & DefaultAppPool)
      Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Español (España, internacional)
      Internet Explorer Version 11 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
      (AO Kaspersky Lab) C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe
      (Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
      (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
      (AVAST Software s.r.o.) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe
      (SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
      (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
      (Intel Corporation) C:\Windows\System32\igfxtray.exe
      (Intel Corporation) C:\Windows\System32\hkcmd.exe
      (Intel Corporation) C:\Windows\System32\igfxpers.exe
      (Grain Media, Inc.) C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe
      () C:\Program Files\OEM\IPM 1.8\IPM.exe
      () C:\Program Files\OEM\OSD 1.10\SunflowerOSD.exe
      (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
      (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
      () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x86__kzf8qxf38zg5c\SkypeHost.exe
      (Microsoft Corporation) C:\Windows\System32\dllhost.exe

      ==================== Registry (Whitelisted) ====================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [fspuip] => C:\Program Files\FSP\fspuip.exe [5459280 2015-05-29] (Sentelic Corporation)
      HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [665424 2008-12-04] (SEIKO EPSON CORPORATION)
      HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
      HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
      HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
      HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
      HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213824 2017-05-10] (AVAST Software)
      HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [495708 2010-06-17] (IDT, Inc.)
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [EPSON TX115 Series] => C:\WINDOWS\system32\spool\DRIVERS\W32X86\3\E_FATIFBB.EXE [199680 2008-09-26] (SEIKO EPSON CORPORATION)
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-11-25] (Google Inc.)
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [DoUSBC120] => C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe [110592 2011-10-05] (Grain Media, Inc.) <===== ATTENTION
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [KSS] => C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [Kaspersky Software Updater] => C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\MountPoints2: {5ea6115a-e72a-11e6-8481-80ee732124c9} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL F:\autorun.exe /auto
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\MountPoints2: {b4500ca3-9eff-11e6-8478-80ee732124c9} - "F:\dlusb_launcherC120.exe"
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\windows\system32\Bubbles.scr [795648 2016-07-16] (Microsoft Corporation)
      HKU\S-1-5-18\...\Run: [KSS] => C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
      ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => -> No File
      ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => -> No File
      ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => -> No File
      ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2017-05-10] (AVAST Software)
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\IPM.lnk [2017-01-05]
      ShortcutTarget: IPM.lnk -> C:\Windows\Installer\{AADF4228-0772-4D43-92EB-B245E3A17B00}\_DA0FEDCDBBD18D7D3C13FE.exe ()
      Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\OSD.lnk [2017-01-05]
      ShortcutTarget: OSD.lnk -> C:\Windows\Installer\{5A9C96FE-1376-45E1-8556-C81255F0B5A7}\_353C0203202AF80E0AFBAF.exe ()
      GroupPolicy: Restriction - Chrome <======= ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\Parameters: [DhcpNameServer] 200.42.4.203 200.49.130.52
      Tcpip\..\Interfaces\{7a267593-1286-4b8e-b2b9-0be493546c77}: [DhcpNameServer] 200.49.130.44 200.42.4.210
      Tcpip\..\Interfaces\{b2de45a8-b3f6-4772-9c42-92d1340cd004}: [DhcpNameServer] 192.168.1.1
      Tcpip\..\Interfaces\{b56b3cd2-59c2-4aeb-86b0-239cd5f0a079}: [NameServer] 77.234.40.79
      Tcpip\..\Interfaces\{c16f348e-9751-4358-9de7-3dbc4a64e909}: [DhcpNameServer] 200.42.4.204 200.49.130.47
      Tcpip\..\Interfaces\{c5f1b0fd-a917-4fd5-8f33-1282264d1181}: [DhcpNameServer] 200.42.4.203 200.49.130.52

      Internet Explorer:
      ==================
      HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
      HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Google
      HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Google
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google
      HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Google
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
      SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      SearchScopes: HKU\S-1-5-21-1731926948-2928861684-2895723843-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
      SearchScopes: HKU\S-1-5-21-1731926948-2928861684-2895723843-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp1_ch&p={searchTerms}
      BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
      Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
      Toolbar: HKU\.DEFAULT -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2016-04-23] (Google Inc.)
      DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
      DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
      DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab

      FireFox:
      ========
      FF DefaultProfile: gpk1fw6l.default
      FF ProfilePath: C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default [2017-05-19]
      FF user.js: detected! => C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\user.js [2016-07-07]
      FF Homepage: Mozilla\Firefox\Profiles\gpk1fw6l.default -> Google
      FF Extension: (Tumblr Savior) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\Extensions\[email protected] [2017-03-24]
      FF Extension: (leethax.net extension) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\Extensions\[email protected] [2017-03-31]
      FF Extension: (Avast SafePrice) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\Extensions\[email protected] [2017-05-10]
      FF Extension: (Avast Online Security) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\Extensions\[email protected] [2017-05-10]
      FF Extension: (Adblock Plus) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-11-26]
      FF Extension: (Disable TLS Certificate Transparency) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\features\{502ad0df-7b0a-4ae5-bde4-5f3138cb8abd}\[email protected] [2017-04-20]
      FF Extension: (Disable Prefetch) - C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\features\{502ad0df-7b0a-4ae5-bde4-5f3138cb8abd}\[email protected] [2017-04-20]
      FF HKLM\...\Thunderbird\Extensions: [[email protected]] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
      FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-05-08] ()
      FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw_1228198.dll [2017-02-27] (Adobe Systems, Inc.)
      FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
      FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
      FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
      FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
      FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
      FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
      FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-27] (Google Inc.)
      FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)

    4. #4
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Sigue del anterior.

      Chrome:
      =======
      CHR DefaultProfile: Default
      CHR HomePage: Default -> hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
      CHR RestoreOnStartup: Default -> "hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp"
      CHR StartupUrls: Default -> "hxxp://www.google.com/"
      CHR Profile: C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default [2017-05-27]
      CHR Extension: (Pop up blocker for Chrome™ - Poper Blocker) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkkbcggnhapdmkeljlodobbkopceiche [2017-04-26]
      CHR Extension: (Adblock Plus) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-22]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
      CHR Extension: (Tumblr Savior) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefddkjnflmjbclpnnoegglmmdfkidip [2017-03-07]
      CHR Extension: (Chrome Media Router) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
      CHR HKLM\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5732136 2017-05-10] (AVAST Software s.r.o.)
      R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263304 2017-05-10] (AVAST Software)
      S3 cphs; C:\WINDOWS\system32\IntelCpHeciSvc.exe [300120 2017-03-10] (Intel Corporation)
      R2 kss; C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\kss.exe [1556448 2015-12-15] (AO Kaspersky Lab)
      S3 ksu; C:\Program Files\Kaspersky Lab\Kaspersky Software Updater\kl_platf.exe [1565000 2016-11-26] (AO Kaspersky Lab)
      S2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [237650 2010-06-17] (IDT, Inc.) [File not signed]
      S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
      S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271488 2017-04-27] (Microsoft Corporation)
      S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84920 2017-04-27] (Microsoft Corporation)
      S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [X]

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [258288 2017-05-10] (AVAST Software s.r.o.)
      R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [148696 2017-05-10] (AVAST Software s.r.o.)
      R0 aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [268016 2017-05-10] (AVAST Software s.r.o.)
      R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [41664 2017-05-10] (AVAST Software s.r.o.)
      S3 aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [55816 2016-09-20] (AVAST Software)
      S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [34136 2017-05-10] (AVAST Software)
      R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [31064 2017-05-10] (AVAST Software)
      R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [107928 2017-05-10] (AVAST Software)
      R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [90336 2017-05-10] (AVAST Software)
      R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [62152 2017-05-10] (AVAST Software)
      R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [764576 2017-05-10] (AVAST Software)
      R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [482608 2017-05-10] (AVAST Software)
      R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115152 2017-05-12] (AVAST Software)
      S3 aswTap; C:\WINDOWS\System32\drivers\aswTap.sys [38984 2014-09-05] (The OpenVPN Project)
      R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [279800 2017-05-10] (AVAST Software)
      R1 avgtp; C:\windows\system32\drivers\avgtpx86.sys [42784 2014-06-24] (AVG Technologies)
      S0 Bhbase; C:\WINDOWS\System32\drivers\Bhbase.sys [47456 2013-09-03] (Baidu, Inc.)
      S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [109184 2016-09-05] (Samsung Electronics Co., Ltd.)
      R1 ElRawDisk; C:\windows\system32\drivers\rsdrv.sys [22312 2009-02-12] (EldoS Corporation)
      R3 fspad_win732; C:\WINDOWS\system32\DRIVERS\fspad_win732.sys [175952 2015-05-29] (Sentelic Corporation)
      R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [23840 2016-07-27] (REALiX(tm))
      R3 MEI; C:\WINDOWS\System32\drivers\HECI.sys [41088 2010-10-19] (Intel Corporation)
      S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
      S3 NETJME; C:\WINDOWS\System32\drivers\NETJME.sys [119296 2016-07-16] (JMicron Technology Corp.)
      R3 RTL8192Ce; C:\WINDOWS\System32\drivers\rtl8192Ce.sys [982120 2011-07-18] (Realtek Semiconductor Corporation )
      S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3182592 2016-07-16] (Realtek Semiconductor Corporation )
      R2 SoilIO; C:\WINDOWS\system32\Drivers\SoilIO.sys [16248 2009-12-04] ()
      R3 soilkbc; C:\WINDOWS\system32\Drivers\soilkbc.sys [10744 2009-12-04] (Systems Internals)
      R3 SoilMC; C:\WINDOWS\system32\Drivers\SoilMC.sys [10616 2009-12-04] (Systems Internals)
      S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
      S3 ssudserd; C:\WINDOWS\system32\DRIVERS\ssudserd.sys [147072 2016-09-05] (Samsung Electronics Co., Ltd.)
      S3 STHDA; C:\WINDOWS\system32\DRIVERS\stwrt.sys [424448 2010-08-25] (IDT, Inc.) [File not signed]
      S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
      S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
      S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
      S3 WsAudioDevice_383; C:\WINDOWS\System32\drivers\WsAudioDevice_383.sys [25632 2013-05-30] (Wondershare)
      S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
      S3 XDva535; C:\WINDOWS\system32\XDva535.sys [93400 2017-04-02] (())
      S3 XDva536; C:\WINDOWS\system32\XDva536.sys [93768 2017-05-27] (())
      U3 idsvc; no ImagePath

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-05-27 16:54 - 2017-05-27 16:54 - 00020175 _____ C:\Users\Valeria\Desktop\FRST.txt
      2017-05-27 16:53 - 2017-05-27 16:54 - 00000000 ____D C:\FRST
      2017-05-27 16:53 - 2017-05-27 16:53 - 00000000 ____D C:\ProgramData\SWCUTemp
      2017-05-27 16:51 - 2017-05-27 16:51 - 01770496 _____ (Farbar) C:\Users\Valeria\Desktop\FRST.exe
      2017-05-27 14:39 - 2017-05-27 16:45 - 00000272 _____ C:\Users\Valeria\Desktop\mb-clean-results.txt
      2017-05-27 14:38 - 2017-05-27 14:38 - 00802248 _____ (Malwarebytes) C:\Users\Valeria\Desktop\mb-clean-3.1.0.1004.exe
      2017-05-27 11:08 - 2017-05-27 11:08 - 00093768 _____ (()) C:\WINDOWS\system32\XDva536.sys
      2017-05-27 10:32 - 2017-05-27 10:32 - 01234348 _____ C:\Users\Valeria\Desktop\panoramica victor1.psd
      2017-05-26 20:51 - 2017-05-26 20:53 - 00000000 ____D C:\Users\Valeria\Desktop\Salida usina Oriente 2017
      2017-05-26 20:30 - 2017-05-26 20:45 - 00000000 ____D C:\Users\Valeria\Desktop\Panoramica usina
      2017-05-25 23:55 - 2017-05-25 23:56 - 37892136 _____ (Malwarebytes ) C:\Users\Valeria\Downloads\MBARW_Setup.exe
      2017-05-25 23:53 - 2017-05-27 16:52 - 00000000 ____D C:\Program Files\Malwarebytes
      2017-05-25 23:53 - 2017-05-25 23:53 - 00002101 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
      2017-05-25 23:51 - 2017-05-25 23:52 - 63035592 _____ (Malwarebytes ) C:\Users\Valeria\Downloads\mb3-setup-35891.35891-3.1.2.1733.exe
      2017-05-25 23:43 - 2017-05-25 23:43 - 00001090 _____ C:\Users\Public\Desktop\FileASSASSIN.lnk
      2017-05-25 23:43 - 2017-05-25 23:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileASSASSIN
      2017-05-25 23:43 - 2017-05-25 23:43 - 00000000 ____D C:\Program Files\FileASSASSIN
      2017-05-25 23:42 - 2017-05-25 23:42 - 00167034 _____ C:\Users\Valeria\Downloads\fileassassin-setup-1.06.exe
      2017-05-24 19:34 - 2017-05-26 19:58 - 00000000 ____D C:\Users\Valeria\Desktop\Espejos
      2017-05-15 13:37 - 2017-05-15 13:37 - 00000233 _____ C:\Users\Valeria\Downloads\NOTIFI_11_05_2017_13_37_53.html
      2017-05-13 12:32 - 2017-05-13 12:32 - 00093768 _____ (()) C:\WINDOWS\system32\XDva536.sys_2017.05.14.21.08.49
      2017-05-13 00:15 - 2017-05-13 00:16 - 34313322 _____ C:\Users\Valeria\Downloads\Nick_Rivers_-_Spend_This_Night_With_Me_Baby_Please(youtube.com).mp4
      2017-05-12 21:11 - 2015-12-28 17:19 - 03317148 _____ C:\Users\Valeria\Desktop\Nuevo reglamento auxiliares.pdf
      2017-05-12 20:56 - 2017-05-12 21:08 - 00000000 ____D C:\Users\Valeria\Desktop\Varios fotografía
      2017-05-12 20:32 - 2017-05-12 20:48 - 00000000 ____D C:\Users\Valeria\Downloads\Queer as folk UK srt
      2017-05-10 23:24 - 2017-05-10 23:24 - 00330768 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
      2017-05-10 15:43 - 2017-05-07 19:47 - 922791936 _____ C:\Users\Valeria\Desktop\Annie Leibovitz Una vida a través de la cámara.avi
      2017-05-09 18:52 - 2017-04-27 22:00 - 05996896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
      2017-05-09 18:52 - 2017-04-27 22:00 - 01725136 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
      2017-05-09 18:52 - 2017-04-27 21:56 - 02048488 _____ C:\WINDOWS\system32\CoreUIComponents.dll
      2017-05-09 18:52 - 2017-04-27 21:55 - 00583128 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreMessaging.dll
      2017-05-09 18:52 - 2017-04-27 21:46 - 05722320 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
      2017-05-09 18:52 - 2017-04-27 21:46 - 01896288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
      2017-05-09 18:52 - 2017-04-27 21:46 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
      2017-05-09 18:52 - 2017-04-27 21:45 - 02263832 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
      2017-05-09 18:52 - 2017-04-27 21:43 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
      2017-05-09 18:52 - 2017-04-27 21:43 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
      2017-05-09 18:52 - 2017-04-27 21:41 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
      2017-05-09 18:52 - 2017-04-27 21:39 - 20967840 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
      2017-05-09 18:52 - 2017-04-27 21:19 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
      2017-05-09 18:52 - 2017-04-27 21:19 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
      2017-05-09 18:52 - 2017-04-27 21:18 - 00255488 _____ (Microsoft Corporation) C:\WINDOWS\system32\unimdm.tsp
      2017-05-09 18:52 - 2017-04-27 21:14 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
      2017-05-09 18:52 - 2017-04-27 21:14 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
      2017-05-09 18:52 - 2017-04-27 21:12 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
      2017-05-09 18:52 - 2017-04-27 21:11 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
      2017-05-09 18:52 - 2017-04-27 21:06 - 01488384 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
      2017-05-09 18:52 - 2017-04-27 21:06 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
      2017-05-09 18:52 - 2017-04-27 21:06 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
      2017-05-09 18:52 - 2017-04-27 21:05 - 19414016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
      2017-05-09 18:52 - 2017-04-27 21:05 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
      2017-05-09 18:52 - 2017-04-27 21:04 - 01284096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
      2017-05-09 18:52 - 2017-04-27 20:59 - 12187136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
      2017-05-09 18:52 - 2017-04-27 20:57 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
      2017-05-09 18:52 - 2017-04-27 20:54 - 02483200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
      2017-05-09 18:52 - 2017-04-27 20:54 - 02027008 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
      2017-05-09 18:52 - 2017-04-27 20:54 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
      2017-05-09 18:52 - 2017-04-27 20:53 - 01235456 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
      2017-05-09 18:52 - 2017-04-27 20:52 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
      2017-05-09 18:52 - 2017-04-27 20:52 - 02994176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
      2017-05-09 18:52 - 2017-04-27 20:52 - 01887232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
      2017-05-09 18:52 - 2017-04-27 20:52 - 01600000 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
      2017-05-09 18:52 - 2017-03-04 03:17 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
      2017-05-09 18:51 - 2017-04-27 22:33 - 00448864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
      2017-05-09 18:51 - 2017-04-27 22:32 - 00685440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
      2017-05-09 18:51 - 2017-04-27 21:59 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
      2017-05-09 18:51 - 2017-04-27 21:58 - 01956704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
      2017-05-09 18:51 - 2017-04-27 21:48 - 00263472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
      2017-05-09 18:51 - 2017-04-27 21:46 - 01504056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
      2017-05-09 18:51 - 2017-04-27 21:46 - 01431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
      2017-05-09 18:51 - 2017-04-27 21:45 - 00975744 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
      2017-05-09 18:51 - 2017-04-27 21:45 - 00861024 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
      2017-05-09 18:51 - 2017-04-27 21:45 - 00781144 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
      2017-05-09 18:51 - 2017-04-27 21:45 - 00493920 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
      2017-05-09 18:51 - 2017-04-27 21:43 - 02168288 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
      2017-05-09 18:51 - 2017-04-27 21:43 - 01557224 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
      2017-05-09 18:51 - 2017-04-27 21:43 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
      2017-05-09 18:51 - 2017-04-27 21:43 - 00355168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
      2017-05-09 18:51 - 2017-04-27 21:42 - 00601952 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 06665952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 04023008 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 01851696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 01277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfasfsrcsnk.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 01202936 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 00981888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
      2017-05-09 18:51 - 2017-04-27 21:40 - 00352760 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMDevAPI.dll
      2017-05-09 18:51 - 2017-04-27 21:39 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
      2017-05-09 18:51 - 2017-04-27 21:39 - 00962760 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
      2017-05-09 18:51 - 2017-04-27 21:38 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
      2017-05-09 18:51 - 2017-04-27 21:35 - 01411616 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
      2017-05-09 18:51 - 2017-04-27 21:33 - 00380184 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
      2017-05-09 18:51 - 2017-04-27 21:29 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
      2017-05-09 18:51 - 2017-04-27 21:26 - 00281088 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
      2017-05-09 18:51 - 2017-04-27 21:23 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
      2017-05-09 18:51 - 2017-04-27 21:22 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\odbcconf.dll
      2017-05-09 18:51 - 2017-04-27 21:21 - 00224256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExSMime.dll
      2017-05-09 18:51 - 2017-04-27 21:20 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Radios.dll
      2017-05-09 18:51 - 2017-04-27 21:19 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
      2017-05-09 18:51 - 2017-04-27 21:19 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\DisplayManager.dll
      2017-05-09 18:51 - 2017-04-27 21:17 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
      2017-05-09 18:51 - 2017-04-27 21:17 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.SyncEngine.dll
      2017-05-09 18:51 - 2017-04-27 21:17 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
      2017-05-09 18:51 - 2017-04-27 21:17 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinRtTracing.dll
      2017-05-09 18:51 - 2017-04-27 21:17 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
      2017-05-09 18:51 - 2017-04-27 21:16 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
      2017-05-09 18:51 - 2017-04-27 21:16 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
      2017-05-09 18:51 - 2017-04-27 21:16 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
      2017-05-09 18:51 - 2017-04-27 21:16 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
      2017-05-09 18:51 - 2017-04-27 21:16 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
      2017-05-09 18:51 - 2017-04-27 21:16 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
      2017-05-09 18:51 - 2017-04-27 21:16 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
      2017-05-09 18:51 - 2017-04-27 21:15 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
      2017-05-09 18:51 - 2017-04-27 21:15 - 00237568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
      2017-05-09 18:51 - 2017-04-27 21:14 - 00670208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
      2017-05-09 18:51 - 2017-04-27 21:14 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
      2017-05-09 18:51 - 2017-04-27 21:14 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
      2017-05-09 18:51 - 2017-04-27 21:13 - 13873664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00386048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00325120 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00271360 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Scanners.dll
      2017-05-09 18:51 - 2017-04-27 21:13 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
      2017-05-09 18:51 - 2017-04-27 21:12 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
      2017-05-09 18:51 - 2017-04-27 21:12 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
      2017-05-09 18:51 - 2017-04-27 21:12 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
      2017-05-09 18:51 - 2017-04-27 21:12 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
      2017-05-09 18:51 - 2017-04-27 21:11 - 01774080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
      2017-05-09 18:51 - 2017-04-27 21:11 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
      2017-05-09 18:51 - 2017-04-27 21:11 - 00747520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
      2017-05-09 18:51 - 2017-04-27 21:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
      2017-05-09 18:51 - 2017-04-27 21:11 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\NaturalLanguage6.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00314368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
      2017-05-09 18:51 - 2017-04-27 21:10 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
      2017-05-09 18:51 - 2017-04-27 21:09 - 01109504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
      2017-05-09 18:51 - 2017-04-27 21:09 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
      2017-05-09 18:51 - 2017-04-27 21:09 - 00561152 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
      2017-05-09 18:51 - 2017-04-27 21:08 - 18365440 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
      2017-05-09 18:51 - 2017-04-27 21:08 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
      2017-05-09 18:51 - 2017-04-27 21:08 - 01534464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
      2017-05-09 18:51 - 2017-04-27 21:08 - 00653312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
      2017-05-09 18:51 - 2017-04-27 21:08 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CryptoWinRT.dll
      2017-05-09 18:51 - 2017-04-27 21:07 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
      2017-05-09 18:51 - 2017-04-27 21:07 - 00525312 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
      2017-05-09 18:51 - 2017-04-27 21:06 - 04614656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
      2017-05-09 18:51 - 2017-04-27 21:06 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
      2017-05-09 18:51 - 2017-04-27 21:06 - 00901120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
      2017-05-09 18:51 - 2017-04-27 21:06 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
      2017-05-09 18:51 - 2017-04-27 21:05 - 00886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
      2017-05-09 18:51 - 2017-04-27 21:05 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
      2017-05-09 18:51 - 2017-04-27 21:04 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
      2017-05-09 18:51 - 2017-04-27 21:04 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
      2017-05-09 18:51 - 2017-04-27 21:04 - 00344576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
      2017-05-09 18:51 - 2017-04-27 21:03 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
      2017-05-09 18:51 - 2017-04-27 21:03 - 01137152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
      2017-05-09 18:51 - 2017-04-27 21:03 - 01098752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
      2017-05-09 18:51 - 2017-04-27 21:03 - 01077760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
      2017-05-09 18:51 - 2017-04-27 21:01 - 00795648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
      2017-05-09 18:51 - 2017-04-27 21:01 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
      2017-05-09 18:51 - 2017-04-27 21:01 - 00248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
      2017-05-09 18:51 - 2017-04-27 21:01 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
      2017-05-09 18:51 - 2017-04-27 21:00 - 12349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
      2017-05-09 18:51 - 2017-04-27 21:00 - 03774464 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
      2017-05-09 18:51 - 2017-04-27 21:00 - 02749440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
      2017-05-09 18:51 - 2017-04-27 21:00 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
      2017-05-09 18:51 - 2017-04-27 20:59 - 02154496 _____ (Microsoft Corporation) C:\WINDOWS\system32\storagewmi.dll
      2017-05-09 18:51 - 2017-04-27 20:59 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
      2017-05-09 18:51 - 2017-04-27 20:58 - 07468544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
      2017-05-09 18:51 - 2017-04-27 20:58 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
      2017-05-09 18:51 - 2017-04-27 20:57 - 01700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
      2017-05-09 18:51 - 2017-04-27 20:57 - 01221120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
      2017-05-09 18:51 - 2017-04-27 20:57 - 01136128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
      2017-05-09 18:51 - 2017-04-27 20:57 - 00719872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_sr.dll
      2017-05-09 18:51 - 2017-04-27 20:57 - 00641024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MCRecvSrc.dll
      2017-05-09 18:51 - 2017-04-27 20:56 - 00400384 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
      2017-05-09 18:51 - 2017-04-27 20:56 - 00103936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 06042624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 01987584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 01656320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 01232384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Maps.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 01004544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 03664384 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 02747904 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 02646528 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 01883648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 00654336 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
      2017-05-09 18:51 - 2017-04-27 20:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
      2017-05-09 18:51 - 2017-04-27 20:53 - 01525760 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
      2017-05-09 18:51 - 2017-04-27 20:53 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Phone.dll
      2017-05-09 18:51 - 2017-04-27 20:53 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
      2017-05-09 18:51 - 2017-04-27 20:53 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
      2017-05-09 18:51 - 2017-04-27 20:53 - 00621056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
      2017-05-09 18:51 - 2017-04-27 20:52 - 03596800 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
      2017-05-09 18:51 - 2017-04-27 20:52 - 02008576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
      2017-05-09 18:51 - 2017-04-27 20:50 - 00783360 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWorkspace.dll
      2017-05-09 18:51 - 2017-03-04 04:57 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
      2017-05-09 18:51 - 2017-03-04 04:09 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
      2017-05-09 18:51 - 2017-03-04 03:46 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
      2017-05-09 18:51 - 2017-03-04 03:23 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
      2017-05-09 18:51 - 2017-03-04 03:16 - 00500224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.dll
      2017-05-09 18:51 - 2017-03-04 03:00 - 00691200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
      2017-05-09 18:50 - 2017-04-27 22:28 - 00965472 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
      2017-05-09 18:50 - 2017-04-27 22:01 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
      2017-05-09 18:50 - 2017-04-27 21:55 - 00628440 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
      2017-05-09 18:50 - 2017-04-27 21:51 - 00277856 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
      2017-05-09 18:50 - 2017-04-27 21:49 - 00053080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fsdepends.sys
      2017-05-09 18:50 - 2017-04-27 21:45 - 00545120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
      2017-05-09 18:50 - 2017-04-27 21:45 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
      2017-05-09 18:50 - 2017-04-27 21:45 - 00025440 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
      2017-05-09 18:50 - 2017-04-27 21:41 - 00361104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
      2017-05-09 18:50 - 2017-04-27 21:23 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
      2017-05-09 18:50 - 2017-04-27 21:22 - 00165376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReInfo.dll
      2017-05-09 18:50 - 2017-04-27 21:22 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\raspppoe.sys
      2017-05-09 18:50 - 2017-04-27 21:21 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
      2017-05-09 18:50 - 2017-04-27 21:21 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthTelemetry.dll
      2017-05-09 18:50 - 2017-04-27 21:20 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\virtdisk.dll
      2017-05-09 18:50 - 2017-04-27 21:20 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vwifimp.sys
      2017-05-09 18:50 - 2017-04-27 21:20 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidcertstorecheck.exe
      2017-05-09 18:50 - 2017-04-27 21:19 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
      2017-05-09 18:50 - 2017-04-27 21:19 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
      2017-05-09 18:50 - 2017-04-27 21:19 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
      2017-05-09 18:50 - 2017-04-27 21:18 - 00450560 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
      2017-05-09 18:50 - 2017-04-27 21:18 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
      2017-05-09 18:50 - 2017-04-27 21:17 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
      2017-05-09 18:50 - 2017-04-27 21:16 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Dxpserver.exe
      2017-05-09 18:50 - 2017-04-27 21:16 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
      2017-05-09 18:50 - 2017-04-27 21:16 - 00195072 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
      2017-05-09 18:50 - 2017-04-27 21:16 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
      2017-05-09 18:50 - 2017-04-27 21:16 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthserv.dll
      2017-05-09 18:50 - 2017-04-27 21:16 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastlsext.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeveloperOptionsSettingsHandlers.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
      2017-05-09 18:50 - 2017-04-27 21:15 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
      2017-05-09 18:50 - 2017-04-27 21:15 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsentUX.dll
      2017-05-09 18:50 - 2017-04-27 21:14 - 00445952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 01755136 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceFlows.DataModel.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 01243136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\WwaApi.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 00206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
      2017-05-09 18:50 - 2017-04-27 21:13 - 00114176 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupugc.exe
      2017-05-09 18:50 - 2017-04-27 21:12 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
      2017-05-09 18:50 - 2017-04-27 21:12 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
      2017-05-09 18:50 - 2017-04-27 21:12 - 00214528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
      2017-05-09 18:50 - 2017-04-27 21:11 - 01378304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
      2017-05-09 18:50 - 2017-04-27 21:11 - 00713728 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
      2017-05-09 18:50 - 2017-04-27 21:11 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
      2017-05-09 18:50 - 2017-04-27 21:11 - 00323584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
      2017-05-09 18:50 - 2017-04-27 21:11 - 00294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV2.dll
      2017-05-09 18:50 - 2017-04-27 21:10 - 00857600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
      2017-05-09 18:50 - 2017-04-27 21:10 - 00819200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
      2017-05-09 18:50 - 2017-04-27 21:10 - 00518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
      2017-05-09 18:50 - 2017-04-27 21:10 - 00242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll
      2017-05-09 18:50 - 2017-04-27 21:09 - 00525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs.dll
      2017-05-09 18:50 - 2017-04-27 21:09 - 00509440 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
      2017-05-09 18:50 - 2017-04-27 21:09 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\puiobj.dll
      2017-05-09 18:50 - 2017-04-27 21:09 - 00352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
      2017-05-09 18:50 - 2017-04-27 21:09 - 00258048 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll
      2017-05-09 18:50 - 2017-04-27 21:08 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
      2017-05-09 18:50 - 2017-04-27 21:07 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
      2017-05-09 18:50 - 2017-04-27 21:07 - 00256512 _____ (Microsoft Corporation) C:\WINDOWS\system32\thumbcache.dll
      2017-05-09 18:50 - 2017-04-27 21:03 - 01220096 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
      2017-05-09 18:50 - 2017-04-27 21:03 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
      2017-05-09 18:50 - 2017-04-27 21:03 - 00318464 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
      2017-05-09 18:50 - 2017-04-27 21:03 - 00291328 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsnt.dll
      2017-05-09 18:50 - 2017-04-27 21:03 - 00134656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
      2017-05-09 18:50 - 2017-04-27 21:00 - 00582656 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceControl.dll
      2017-05-09 18:50 - 2017-04-27 21:00 - 00300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
      2017-05-09 18:50 - 2017-04-27 21:00 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\umpoext.dll
      2017-05-09 18:50 - 2017-04-27 20:59 - 01017856 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
      2017-05-09 18:50 - 2017-04-27 20:59 - 00758784 _____ (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
      2017-05-09 18:50 - 2017-04-27 20:59 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
      2017-05-09 18:50 - 2017-04-27 20:58 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\imapi2.dll
      2017-05-09 18:50 - 2017-04-27 20:58 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpaceAgent.exe
      2017-05-09 18:50 - 2017-04-27 20:57 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
      2017-05-09 18:50 - 2017-04-27 20:55 - 01413632 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
      2017-05-09 18:50 - 2017-04-27 20:54 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
      2017-05-09 18:50 - 2017-04-27 20:52 - 00846848 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
      2017-05-09 18:50 - 2017-04-27 20:50 - 01438720 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
      2017-05-09 18:50 - 2017-04-27 20:50 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\spaceman.exe
      2017-05-08 23:17 - 2017-05-08 23:17 - 00000056 _____ C:\Users\Valeria\Desktop\revistas.txt
      2017-05-08 22:37 - 2017-05-08 22:37 - 00000000 ____D C:\Program Files\Apple Software Update
      2017-05-08 21:52 - 2017-05-08 21:52 - 00000000 ____D C:\Users\Valeria\Desktop\Mica
      2017-05-07 18:19 - 2017-05-07 18:23 - 00000000 ____D C:\Users\Valeria\Desktop\Copia archivos celular 7-5-17
      2017-05-06 09:33 - 2017-05-06 09:33 - 00093768 _____ (()) C:\WINDOWS\system32\XDva536.sys_2017.05.06.18.01.03
      2017-05-06 00:01 - 2017-05-20 01:23 - 00473600 ___SH C:\Users\Valeria\Downloads\Thumbs.db
      2017-05-05 22:48 - 2017-05-05 22:48 - 00002571 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Visor de Microsoft Office PowerPoint 2007.lnk
      2017-05-05 22:47 - 2017-05-05 22:47 - 00000000 ____D C:\Program Files\MSECache

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-05-27 16:52 - 2017-02-18 11:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
      2017-05-27 16:34 - 2016-09-15 11:19 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
      2017-05-27 16:33 - 2016-07-15 23:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
      2017-05-27 16:20 - 2016-09-15 10:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
      2017-05-27 14:58 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\AppReadiness
      2017-05-27 10:35 - 2016-06-29 17:08 - 00777728 ___SH C:\Users\Valeria\Desktop\Thumbs.db
      2017-05-27 10:26 - 2016-07-29 00:14 - 00000000 ____D C:\Users\Valeria\Desktop\Nueva carpeta (2)
      2017-05-27 02:00 - 2012-01-11 10:58 - 00000000 ____D C:\Users\Valeria\AppData\Roaming\SoftGrid Client
      2017-05-26 13:28 - 2016-07-16 05:29 - 00000000 ___HD C:\Program Files\WindowsApps
      2017-05-24 13:19 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
      2017-05-24 13:19 - 2016-07-16 05:19 - 00000000 ____D C:\WINDOWS\CbsTemp
      2017-05-24 09:44 - 2016-07-07 21:42 - 00000000 ____D C:\ProgramData\ProductData
      2017-05-23 18:33 - 2013-07-14 12:29 - 00000000 ____D C:\WINDOWS\system32\MRT
      2017-05-23 14:47 - 2011-11-25 19:13 - 129479984 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
      2017-05-21 00:31 - 2017-03-08 20:24 - 00000000 ____D C:\Users\Valeria\Desktop\naranja-telefonica factura
      2017-05-19 20:36 - 2016-07-16 05:28 - 00000000 ____D C:\WINDOWS\INF
      2017-05-19 19:59 - 2016-05-16 21:29 - 00000000 ____D C:\Users\Valeria\AppData\Roaming\MPC-HC
      2017-05-19 19:57 - 2012-04-30 13:07 - 00001042 _____ C:\Users\Public\Desktop\CCleaner.lnk
      2017-05-14 10:27 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
      2017-05-14 10:27 - 2014-07-19 20:26 - 00000000 ____D C:\Users\Valeria\AppData\Local\Adobe
      2017-05-13 12:02 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\rescache
      2017-05-13 02:52 - 2011-12-04 17:16 - 00000000 ____D C:\Users\Valeria\AppData\Roaming\vlc
      2017-05-13 02:18 - 2015-03-01 17:18 - 00001456 _____ C:\Users\Valeria\AppData\Local\Adobe Guardar para Web 13.0 Prefs
      2017-05-13 01:49 - 2016-06-27 20:31 - 00000000 ____D C:\Users\Valeria\Documents\Notas varias
      2017-05-13 01:42 - 2012-01-17 19:39 - 00000000 ____D C:\Users\Valeria\AppData\Local\Windows Live
      2017-05-12 20:02 - 2016-01-08 02:11 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswstm.sys
      2017-05-12 20:01 - 2017-04-19 16:33 - 00000000 ____D C:\Users\Valeria\Desktop\CARLOS RAMON FERNANDEZ - DISCOGRAFIA
      2017-05-11 20:07 - 2016-08-11 17:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
      2017-05-11 18:46 - 2015-05-21 22:48 - 00002220 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-05-11 11:15 - 2016-04-27 01:40 - 00000000 __RHD C:\Users\Public\AccountPictures
      2017-05-10 23:26 - 2016-09-15 11:02 - 02196866 _____ C:\WINDOWS\system32\PerfStringBackup.INI
      2017-05-10 23:26 - 2016-07-16 14:18 - 00843738 _____ C:\WINDOWS\system32\perfh00A.dat
      2017-05-10 23:26 - 2016-07-16 14:18 - 00200264 _____ C:\WINDOWS\system32\perfc00A.dat
      2017-05-10 23:24 - 2017-02-08 21:52 - 00268016 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswblogx.sys
      2017-05-10 23:24 - 2017-02-08 21:52 - 00258288 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
      2017-05-10 23:24 - 2017-02-08 21:52 - 00148696 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidshx.sys
      2017-05-10 23:24 - 2017-02-08 21:52 - 00041664 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbunivx.sys
      2017-05-10 23:24 - 2016-02-05 14:03 - 00031064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00764576 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00482608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00279800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00107928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00090336 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00062152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
      2017-05-10 23:24 - 2016-01-08 02:11 - 00034136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
      2017-05-10 23:21 - 2016-09-15 10:56 - 03602872 _____ C:\WINDOWS\system32\FNTCACHE.DAT
      2017-05-10 23:20 - 2015-03-30 01:01 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ___SD C:\WINDOWS\system32\F12
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ___RD C:\Program Files\Windows Defender
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\system32\oobe
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\system32\inetsrv
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\Provisioning
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
      2017-05-10 23:19 - 2016-07-16 05:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
      2017-05-10 23:19 - 2016-07-15 23:22 - 00000000 ____D C:\WINDOWS\system32\Dism
      2017-05-09 21:57 - 2016-07-16 05:29 - 00000000 ____D C:\WINDOWS\system32\NDF
      2017-05-09 19:04 - 2016-07-25 14:56 - 00000000 ____D C:\Users\Valeria\AppData\Local\Packages
      2017-05-09 16:37 - 2017-02-18 11:53 - 00059904 _____ C:\WINDOWS\system32\Drivers\mbae.sys
      2017-05-08 22:37 - 2014-07-25 18:40 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
      2017-05-08 22:22 - 2015-10-26 01:32 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
      2017-05-08 22:21 - 2015-10-26 01:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
      2017-05-08 21:17 - 2016-03-19 23:33 - 00000000 ____D C:\Program Files\Mozilla Firefox
      2017-05-08 21:17 - 2015-03-30 01:01 - 00001194 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
      2017-05-05 23:01 - 2011-11-23 03:22 - 00042904 _____ C:\Users\Valeria\AppData\Local\GDIPFONTCACHEV1.DAT
      2017-05-05 22:48 - 2016-07-16 05:29 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
      2017-05-05 22:48 - 2011-09-27 07:24 - 00000000 ____D C:\Program Files\Microsoft Office
      2017-05-03 18:59 - 2017-04-09 11:30 - 00000000 ____D C:\Users\Valeria\Desktop\Eadweard.2015.1080p.WEB-DL.DD5.1.H264-FGT[EtHD]
      2017-04-28 21:59 - 2016-07-16 05:31 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
      2017-04-28 21:59 - 2016-07-16 05:31 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl

      ==================== Files in the root of some directories =======

      2015-08-03 16:48 - 2015-08-03 16:48 - 0000108 _____ () C:\Users\Valeria\AppData\Roaming\.ptbt1
      2015-03-01 17:18 - 2017-05-13 02:18 - 0001456 _____ () C:\Users\Valeria\AppData\Local\Adobe Guardar para Web 13.0 Prefs
      2016-03-13 00:36 - 2016-03-13 00:36 - 0000001 _____ () C:\Users\Valeria\AppData\Local\llftool.4.40.agreement
      2016-08-14 11:32 - 2016-08-14 11:32 - 0007605 _____ () C:\Users\Valeria\AppData\Local\Resmon.ResmonCfg

      Files to move or delete:
      ====================
      C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe


      Some files in TEMP:
      ====================
      2016-11-03 21:07 - 2011-10-05 23:28 - 0110592 ____N (Grain Media, Inc.) C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\WINDOWS\explorer.exe => File is digitally signed
      C:\WINDOWS\system32\winlogon.exe => File is digitally signed
      C:\WINDOWS\system32\wininit.exe => File is digitally signed
      C:\WINDOWS\system32\svchost.exe => File is digitally signed
      C:\WINDOWS\system32\services.exe => File is digitally signed
      C:\WINDOWS\system32\User32.dll => File is digitally signed
      C:\WINDOWS\system32\userinit.exe => File is digitally signed
      C:\WINDOWS\system32\rpcss.dll => File is digitally signed
      C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
      C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-05-24 15:12

      ==================== End of FRST.txt ============================

    5. #5
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Reporte de Addition:

      Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24-05-2017
      Ran by Valeria (27-05-2017 16:55:24)
      Running from C:\Users\Valeria\Desktop
      Microsoft Windows 10 Home Version 1607 (X86) (2016-09-15 14:26:01)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-1731926948-2928861684-2895723843-500 - Administrator - Disabled)
      DefaultAccount (S-1-5-21-1731926948-2928861684-2895723843-503 - Limited - Disabled)
      HomeGroupUser$ (S-1-5-21-1731926948-2928861684-2895723843-1004 - Limited - Enabled)
      Invitado (S-1-5-21-1731926948-2928861684-2895723843-501 - Limited - Disabled) => C:\Users\Invitado
      Valeria (S-1-5-21-1731926948-2928861684-2895723843-1000 - Administrator - Enabled) => C:\Users\Valeria

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
      AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
      AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
      Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
      Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
      Adobe Flash Player 25 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 25.0.0.171 - Adobe Systems Incorporated)
      Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
      Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.8.198 - Adobe Systems, Inc.)
      Apple Software Update (HKLM\...\{52D87F32-70E4-4348-8148-C0B9F35B1314}) (Version: 2.3.0.177 - Apple Inc.)
      Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.4.5.0 - Asmedia Technology)
      Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
      CCleaner (HKLM\...\CCleaner) (Version: 5.30 - Piriform)
      Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
      Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
      Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
      Compatibilidad con Aplicaciones de Apple (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
      Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
      D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
      Desinstalador de impresoras EPSON TX115 Series (HKLM\...\EPSON TX115 Series) (Version: - SEIKO EPSON Corporation)
      Driver 1.2 (HKLM\...\{BA56CD60-1D9F-4BE6-AC2F-B7C4A5437C35}) (Version: 1.2 - OEM)
      Epson Event Manager (HKLM\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.20.00 - SEIKO EPSON Corporation)
      EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
      ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
      Facebook Video Calling 3.1.0.521 (HKLM\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
      FileASSASSIN (HKLM\...\FileASSASSIN) (Version: 1.06 - Malwarebytes)
      Finger Sensing Pad Driver (HKLM\...\{E86906FF-C63D-4EAF-ACE7-5F8D55FBEA9A}) (Version: 8.8.0.2 - Sentelic)
      Galería fotográfica de Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
      Google Chrome (HKLM\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
      Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
      Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
      Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
      Google Update Helper (Version: 1.3.33.5 - Google Inc.) Hidden
      Hacer clic y ejecutar de Microsoft Office 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
      Hacer clic y ejecutar de Microsoft Office 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
      IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6289.0 - IDT)
      Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
      Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
      Intel(R) Processor Graphics (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
      IPM 1.8 (HKLM\...\{AADF4228-0772-4D43-92EB-B245E3A17B00}) (Version: 1.8 - OEM)
      JMicron Ethernet Adapter NDIS Driver (HKLM\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.24.7 - JMicron Technology Corp.)
      JMicron Flash Media Controller Driver (HKLM\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.53.5 - JMicron Technology Corp.)
      Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
      Karos Rosh (HKLM\...\Karos Rosh) (Version: 1192 - Axeso5)
      Kaspersky Security Scan (HKLM\...\InstallWIX_{D1282694-0693-41A8-ABC1-6D1FFC1F65C5}) (Version: 16.0.0.1344 - Kaspersky Lab)
      Kaspersky Security Scan (Version: 16.0.0.1344 - Kaspersky Lab) Hidden
      Kaspersky Software Updater (HKLM\...\InstallWIX_{DEEDA858-A9B4-4212-8873-2F2CE2706E68}) (Version: 2.0.0.623 - Kaspersky Lab)
      Kaspersky Software Updater (Version: 2.0.0.623 - Kaspersky Lab) Hidden
      K-Lite Mega Codec Pack 13.1.0 (HKLM\...\KLiteCodecPack_is1) (Version: 13.1.0 - KLCP)
      Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
      Microsoft Camera Codec Pack (HKLM\...\{B036CF90-EFDF-4B70-B3DE-ABAE2B8FE50F}) (Version: 6.3.9723.0 - Microsoft Corporation)
      Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
      Microsoft Office PowerPoint Viewer 2007 (Spanish) (HKLM\...\{95120000-00AF-0C0A-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
      Microsoft Office Starter 2010 - Español (HKLM\...\{90140011-0066-0C0A-0000-0000000FF1CE}) (Version: 14.0.5139.5005 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\OneDriveSetup.exe) (Version: 17.3.6799.0327 - Microsoft Corporation)
      Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
      Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
      Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
      Mozilla Firefox 53.0 (x86 es-AR) (HKLM\...\Mozilla Firefox 53.0 (x86 es-AR)) (Version: 53.0 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
      OSD 1.10 (HKLM\...\{5A9C96FE-1376-45E1-8556-C81255F0B5A7}) (Version: 1.10 - OEM)
      PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
      QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
      RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
      RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
      REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4123-B2B9-173F09590E16}) (Version: 1.00.0180 - REALTEK Semiconductor Corp.)
      Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
      swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
      Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
      VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
      Webcam 1.5 (HKLM\...\{39B78651-6FD2-4752-BE68-C3BDB6F2D9EE}) (Version: 1.5 - OEM)
      Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {072F663C-90FF-42CD-B068-613EE6786B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
      Task: {08877AA3-97E3-4403-B072-35DDD70EC94F} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
      Task: {10822770-0CB1-42A3-BA71-ADE36390AEF6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2017-02-14] (Apple Inc.)
      Task: {11B87D3A-9246-451A-A641-0A058BBBD81A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
      Task: {162777A3-E87F-4F9A-960C-10BA9DC14608} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-1731926948-2928861684-2895723843-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe
      Task: {25F405A2-3ABE-440D-9906-D9E3C5B1EF30} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1731926948-2928861684-2895723843-1000Core => C:\Users\Valeria\AppData\Local\Facebook\Update\FacebookUpdate.exe
      Task: {2CEA757F-C885-4E2B-8512-7EAD6D24E442} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1731926948-2928861684-2895723843-1000UA => C:\Users\Valeria\AppData\Local\Facebook\Update\FacebookUpdate.exe
      Task: {3602980D-36E2-4392-AE45-BB2A7ACC1539} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1731926948-2928861684-2895723843-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
      Task: {38C18551-7135-429E-B93A-D4975A69A0B2} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-1731926948-2928861684-2895723843-1000 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe
      Task: {41136F90-5881-4906-A1C2-797A42D62698} - \Games\UpdateCheck_S-1-5-21-1731926948-2928861684-2895723843-1000 -> No File <==== ATTENTION
      Task: {41DA3330-9ECE-44FE-9BFF-F2E87B0D0AA3} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
      Task: {4551172C-CBB0-4599-8296-91861C1E42BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
      Task: {4A42B8A1-9A6A-49CA-9964-15B9AE3B5074} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
      Task: {4E063DA2-F75A-4E9D-8D70-3E872048EB48} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1731926948-2928861684-2895723843-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe
      Task: {53FB8E0C-6426-4067-9DB4-B6BD811B1BC4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
      Task: {5D37E8CA-7CA4-4032-AE38-167AAA80E6A1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
      Task: {6D1440BC-367A-4EFF-B0C7-4280DCF0E7AB} - System32\Tasks\{752E1D9A-FF1D-4A3F-A05C-52E6445E0337} => pcalua.exe -a C:\Users\Valeria\AppData\Local\Temp\Temp2_PortablewinLAME-rc3-full-noinst-custom-r01.zip\PortableWinLAME\PortableWinLAME.exe <==== ATTENTION
      Task: {79EBA179-7304-4CF2-9AE2-989384C7BF65} - System32\Tasks\{E8D8FC6E-BB7E-4E28-B6B2-9828AF5B7FA1} => pcalua.exe -a "C:\Users\Valeria\Desktop\Subtitle Workshop\SubtitleWorkshop.exe" -d C:\Users\Valeria\Desktop\theofficeUK_subt -c "C:\Users\Valeria\Desktop\theofficeUK_subt\theoffices01e01uk.srt"
      Task: {7F473071-8E3D-45E3-80BB-59B4BABCBD50} - System32\Tasks\0215avUpdateInfo => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe
      Task: {8631344D-1A4C-4543-BF88-9D6CFC8FC3FB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
      Task: {86C10171-3B1E-4257-B7D5-7A78C5733897} - System32\Tasks\Norton Product InstallerIdle => C:\Windows\System32\Adobe\Shockwave 12\SymInstallStub.exe
      Task: {93B7626D-21B2-4ACE-AC48-98CE8F4AF145} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
      Task: {9AE4D15F-0D91-4B87-A8A9-5BCD0B622582} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
      Task: {9C70F685-064D-44A1-B1D5-4D2ECFC9E54D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-05-10] (AVAST Software)
      Task: {9EE67C8D-E151-4189-B1FD-6803C1F36B34} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
      Task: {A39D0058-AE25-4149-B087-C5D61C2EF381} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-1731926948-2928861684-2895723843-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe
      Task: {B0CDBAF7-CB22-4730-87BB-A58F8CCABAF8} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
      Task: {B14EB245-0FF8-4561-AFFE-4C3A6A7B9D1C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
      Task: {B61D8239-6C22-4248-81E9-E75866D7EC73} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
      Task: {B6BBACEC-C229-43AC-8805-4BF705855688} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
      Task: {B71C8617-2063-47F5-AD8F-2873A459BD49} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
      Task: {B992529C-18BB-4340-A6B6-19A05CF2C481} - System32\Tasks\1015avzUpdateInfo => C:\ProgramData\Avg_Update_1015avz\1015avz_AVG-Secure-Search-Update.exe
      Task: {BB5BD567-6070-4AB2-A131-950A9658B14B} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_25_0_0_171_pepper.exe [2017-05-14] (Adobe Systems Incorporated)
      Task: {CC63BE04-B61A-4E19-B94E-A041F9A74132} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
      Task: {D00D104E-2887-4B3D-B448-267A75E0F704} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
      Task: {D530EB1F-DFA3-4E2D-9012-44F1E62928D2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
      Task: {DCBA7FC7-4CD7-4D45-8471-37F7D9C3F221} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-13] (AVAST Software)
      Task: {E3CCD4CE-D0F8-473F-AD87-16597200AB54} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Valeria\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe
      Task: {E3D5E75A-8F5F-4FC0-8CF9-A005991195D5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-05-05] (Piriform Ltd)
      Task: {EDBF0CB1-5923-47A7-88FA-7010FC3F6507} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-04-14] ()
      Task: {F6C82E35-B04D-4A43-B1FE-0B2598A63878} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

      Task: C:\WINDOWS\Tasks\0215avUpdateInfo.job => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe
      Task: C:\WINDOWS\Tasks\1015avzUpdateInfo.job => C:\ProgramData\Avg_Update_1015avz\1015avz_AVG-Secure-Search-Update.exe
      Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1731926948-2928861684-2895723843-1000Core.job => C:\Users\Valeria\AppData\Local\Facebook\Update\FacebookUpdate.exe
      Task: C:\WINDOWS\Tasks\FacebookUpdateTaskUserS-1-5-21-1731926948-2928861684-2895723843-1000UA.job => C:\Users\Valeria\AppData\Local\Facebook\Update\FacebookUpdate.exe

      ==================== Shortcuts =============================

      (The entries could be listed to be restored or removed.)

      ==================== Loaded Modules (Whitelisted) ==============

      2016-07-16 05:25 - 2016-07-16 05:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
      2017-05-09 18:52 - 2017-04-27 21:56 - 02048488 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
      2015-12-15 13:38 - 2015-12-15 13:38 - 00326112 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\dblite.dll
      2015-10-27 16:44 - 2015-10-27 16:44 - 00404952 _____ () C:\Program Files\Kaspersky Lab\Kaspersky Security Scan\ipm_service.dll
      2017-05-09 18:52 - 2017-04-27 21:56 - 02048488 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
      2016-07-16 05:25 - 2016-07-16 05:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
      2017-03-17 08:08 - 2017-03-04 03:24 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
      2017-03-17 08:05 - 2017-03-04 03:04 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
      2017-03-17 08:05 - 2017-03-04 02:58 - 01150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
      2016-09-15 06:50 - 2016-09-15 06:50 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
      2017-05-09 18:51 - 2017-04-27 20:52 - 01724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
      2017-05-09 18:51 - 2017-04-27 20:55 - 03158016 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
      2013-05-16 16:14 - 2008-12-03 14:05 - 00135168 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll
      2013-05-16 16:14 - 2008-11-26 10:56 - 00057344 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 00997896 _____ () C:\Program Files\AVAST Software\Avast\AvChrome.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 67717632 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 00176992 _____ () C:\Program Files\AVAST Software\Avast\event_routing_rpc.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 00223224 _____ () C:\Program Files\AVAST Software\Avast\tasks_core.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 00291824 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
      2017-05-10 23:24 - 2017-05-10 23:24 - 00684656 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
      2015-06-01 21:00 - 2017-03-10 01:27 - 00112264 _____ () C:\Windows\System32\IccLibDll.dll
      2011-01-14 05:03 - 2011-01-14 05:03 - 01108480 _____ () C:\Program Files\OEM\IPM 1.8\IPM.exe
      2009-11-17 12:21 - 2009-11-17 12:21 - 00092160 _____ () C:\Program Files\OEM\IPM 1.8\SoilIO.dll
      2011-01-14 05:04 - 2011-01-14 05:04 - 00207360 _____ () C:\Program Files\OEM\IPM 1.8\vista.dll
      2010-10-12 11:35 - 2010-10-12 11:35 - 00549376 _____ () C:\Program Files\OEM\OSD 1.10\SunflowerOSD.exe
      2009-11-17 12:21 - 2009-11-17 12:21 - 00092160 _____ () C:\Program Files\OEM\OSD 1.10\SoilIO.dll
      2010-09-24 04:49 - 2010-09-24 04:49 - 16138240 _____ () C:\Program Files\OEM\OSD 1.10\Media.dll
      2017-05-26 13:27 - 2017-05-26 13:28 - 00064512 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x86__kzf8qxf38zg5c\SkypeHost.exe
      2017-05-26 13:27 - 2017-05-26 13:28 - 00168960 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
      2017-05-26 13:27 - 2017-05-26 13:28 - 31097856 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x86__kzf8qxf38zg5c\SkyWrap.dll
      2017-05-26 13:27 - 2017-05-26 13:28 - 01734656 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.16.595.0_x86__kzf8qxf38zg5c\skypert.dll

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)

      AlternateDataStreams: C:\ProgramData\Temp:6DDED7D9 [119]

      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2009-07-13 23:04 - 2014-09-01 08:55 - 00000098 _____ C:\WINDOWS\system32\Drivers\etc\hosts

      127.0.0.1 localhost
      ::1 localhost

      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Control Panel\Desktop\\Wallpaper -> E:\Pictures\Pictures\Coldplay\a head2.jpg
      DNS Servers: 200.42.4.203 - 200.49.130.52
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\StartupApproved\Run: => "OneDrive"
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\StartupApproved\Run: => "Kaspersky Software Updater"
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\StartupApproved\Run: => "KSS"

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{AB535D20-50B4-43BD-8126-DA6231CD1B94}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
      FirewallRules: [{84A28928-E932-44A6-9647-79EF22399073}] => (Allow) LPort=2869
      FirewallRules: [{34D054AF-761A-4B98-A268-8F6205D938F8}] => (Allow) LPort=1900
      FirewallRules: [{97BD2995-7AC6-402D-B37D-1B3111CF81FD}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
      FirewallRules: [{E6312A84-60F5-4BF9-BB04-2B19F133366D}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe
      FirewallRules: [TCP Query User{7F418272-0CF9-4DE0-B74C-C28264E54830}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
      FirewallRules: [UDP Query User{D13A5E0F-6A2D-4AA7-A3A7-A9CC3245B70D}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
      FirewallRules: [{9C57551C-7268-4651-9BF4-7ADE6DFF16B4}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
      FirewallRules: [{8C559FB8-AE55-4B26-8E13-4EF78DB443D8}] => (Allow) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
      FirewallRules: [TCP Query User{8EC35559-A81B-4A85-8CB5-5C210A703629}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe
      FirewallRules: [UDP Query User{AA413BD8-E1E5-4E33-975E-C19E1829C9F6}C:\program files\epson software\event manager\eeventmanager.exe] => (Allow) C:\program files\epson software\event manager\eeventmanager.exe
      FirewallRules: [TCP Query User{34D78798-2D1C-41C6-8D00-9C3B8872E999}C:\users\invitado\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Block) C:\users\invitado\appdata\local\facebook\video\skype\facebookvideocalling.exe
      FirewallRules: [UDP Query User{7A7E96F1-B52A-426D-A4BD-667C6FED42C1}C:\users\invitado\appdata\local\facebook\video\skype\facebookvideocalling.exe] => (Block) C:\users\invitado\appdata\local\facebook\video\skype\facebookvideocalling.exe
      FirewallRules: [{36C40194-5CFC-4329-8791-93BBFB2CE80B}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      FirewallRules: [{A4EBC7D7-0519-4B91-A9B6-9245E454416E}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
      FirewallRules: [{C4EAB583-F918-41A8-82E9-BA4719E6E9E7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{30D9092F-0793-4A73-A091-CB97D110987D}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{1E5F608D-DE5A-4328-8F45-0F1010B18B05}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{512CE005-26D8-4D2B-8B68-7BBEDEBA7CEA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{20C16348-7962-404D-AE46-E3642772A41B}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

      ==================== Restore Points =========================

      17-05-2017 14:40:59 Windows Update
      23-05-2017 14:46:32 Windows Update

      ==================== Faulty Device Manager Devices =============

      Name: avast! SecureLine TAP Adapter v3
      Description: avast! SecureLine TAP Adapter v3
      Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
      Manufacturer: TAP-Windows Provider V9
      Service: aswTap
      Problem: : This device is disabled. (Code 22)
      Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (05/27/2017 02:55:30 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1542) (User: NT AUTHORITY)
      Description: Windows no puede cargar el archivo de Registro de clases.
      DETALLE: El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso.

      Error: (05/27/2017 02:55:30 PM) (Source: Microsoft-Windows-User Profiles Service) (EventID: 1508) (User: NT AUTHORITY)
      Description: Windows no pudo cargar el Registro. A menudo este problema se debe a una memoria o derechos de seguridad insuficientes.

      DETALLE - El proceso no tiene acceso al archivo porque está siendo utilizado por otro proceso.
      para C:\Users\Valeria\AppData\Local\Microsoft\Windows\\UsrClass.dat

      Error: (05/27/2017 02:49:08 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Valeria-pe)
      Description: No se pudo activar la aplicación Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App debido al error: -2144927141. Consulte el registro Microsoft-Windows-TWinUI/Operational para obtener más información.

      Error: (05/25/2017 11:58:12 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: mbam.exe, versión: 3.0.0.1068, marca de tiempo: 0x59125ef2
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x08758b56
      Identificador del proceso con errores: 0x187c
      Hora de inicio de la aplicación con errores: 0x01d2d5cbe8f7d9cb
      Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 53e03e39-d33d-4875-b98e-4e2d0428b836
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (05/25/2017 11:57:46 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: mbam.exe, versión: 3.0.0.1068, marca de tiempo: 0x59125ef2
      Nombre del módulo con errores: unknown, versión: 0.0.0.0, marca de tiempo: 0x00000000
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x08758b56
      Identificador del proceso con errores: 0x19d0
      Hora de inicio de la aplicación con errores: 0x01d2d5cbd941c80d
      Ruta de acceso de la aplicación con errores: C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
      Ruta de acceso del módulo con errores: unknown
      Identificador del informe: 72ddd155-7ff7-44c6-8b59-a5457b0d1cd7
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (05/25/2017 11:45:54 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: STacSV.exe, versión: 1.0.6289.0, marca de tiempo: 0x4c1ad976
      Nombre del módulo con errores: STacSV.exe, versión: 1.0.6289.0, marca de tiempo: 0x4c1ad976
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x00005d5a
      Identificador del proceso con errores: 0x680
      Hora de inicio de la aplicación con errores: 0x01d2d5ca30eea54c
      Ruta de acceso de la aplicación con errores: C:\Program Files\IDT\WDM\STacSV.exe
      Ruta de acceso del módulo con errores: C:\Program Files\IDT\WDM\STacSV.exe
      Identificador del informe: 3a3e5c8c-ee34-42cd-835d-0417f63ac6f0
      Nombre completo del paquete con errores:
      Identificador de aplicación relativa del paquete con errores:

      Error: (05/25/2017 11:28:33 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
      .


      Operación:
      Ejecutando operación asincrónica

      Contexto:
      Estado actual: DoSnapshotSet

      Error: (05/25/2017 11:27:58 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
      Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

      Details:
      AddLegacyDriverFiles: Unable to back up image of binary Protocolo de detección de nivel de vínculo de Microsoft.

      System Error:
      Acceso denegado.
      .

      Error: (05/25/2017 11:23:28 PM) (Source: VSS) (EventID: 8193) (User: )
      Description: Error del Servicio de instantáneas de volumen: error inesperado al llamar a la rutina QueryFullProcessImageNameW. HR = 0x80070006, Controlador no válido.
      .


      Operación:
      Ejecutando operación asincrónica

      Contexto:
      Estado actual: DoSnapshotSet

      Error: (05/25/2017 11:22:48 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
      Description: Error en Servicios de cifrado mientras se procesaba el objeto "System Writer" de la llamada OnIdentity().

      Details:
      AddLegacyDriverFiles: Unable to back up image of binary Protocolo de detección de nivel de vínculo de Microsoft.

      System Error:
      Acceso denegado.
      .


      System errors:
      =============
      Error: (05/27/2017 04:34:27 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
      y APPID
      {F72671A9-012C-4725-9D2F-2A4D32D65169}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.

      Error: (05/27/2017 04:34:15 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: El servicio NetTcpActivator depende del servicio NetTcpPortSharing, el cual no pudo iniciarse debido al siguiente error:
      No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.

      Error: (05/27/2017 04:34:14 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio LiveUpdateSvc no pudo iniciarse debido al siguiente error:
      El sistema no puede encontrar el archivo especificado.

      Error: (05/27/2017 04:34:07 PM) (Source: i8042prt) (EventID: 41) (User: )
      Description: Error al habilitar al mouse para transmitir información. Se ha reiniciado el dispositivo para que esté operativo.

      Error: (05/27/2017 04:34:05 PM) (Source: i8042prt) (EventID: 41) (User: )
      Description: Error al habilitar al mouse para transmitir información. Se ha reiniciado el dispositivo para que esté operativo.

      Error: (05/27/2017 04:34:02 PM) (Source: i8042prt) (EventID: 41) (User: )
      Description: Error al habilitar al mouse para transmitir información. Se ha reiniciado el dispositivo para que esté operativo.

      Error: (05/27/2017 04:33:10 PM) (Source: DCOM) (EventID: 10010) (User: Valeria-pe)
      Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (05/27/2017 04:22:55 PM) (Source: DCOM) (EventID: 10010) (User: Valeria-pe)
      Description: El servidor {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} no se registró con DCOM dentro del tiempo de espera requerido.

      Error: (05/27/2017 02:58:15 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
      Description: El servicio Malwarebytes Service se cerró con el siguiente error:
      Clase no registrada

      Error: (05/27/2017 02:55:30 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
      Description: La configuración de permisos específico de la aplicación no concede el permiso Activación Local para la aplicación de servidor COM con CLSID
      {8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
      y APPID
      {F72671A9-012C-4725-9D2F-2A4D32D65169}
      al usuario NT AUTHORITY\SYSTEM con SID (S-1-5-18) en la dirección LocalHost (con LRPC) que se ejecuta en el contenedor de aplicaciones con SID No disponible (No disponible). Este permiso de seguridad se puede modificar mediante la herramienta administrativa Servicios de componentes.


      ==================== Memory info ===========================

      Processor: Intel(R) Pentium(R) CPU B950 @ 2.10GHz
      Percentage of memory in use: 34%
      Total physical RAM: 3495.69 MB
      Available physical RAM: 2281.29 MB
      Total Virtual: 7079.69 MB
      Available Virtual: 5764.36 MB

      ==================== Drives ================================

      Drive c: (W7OS) (Fixed) (Total:161.21 GB) (Free:88.5 GB) NTFS
      Drive e: () (Fixed) (Total:130.5 GB) (Free:34.96 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 9B0EA661)
      Partition 1: (Active) - (Size=539 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=5.9 GB) - (Type=27)
      Partition 3: (Not Active) - (Size=161.2 GB) - (Type=07 NTFS)
      Partition 4: (Not Active) - (Size=130.5 GB) - (Type=OF Extended)

      ==================== End of Addition.txt ============================

    6. #6
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Tienes infecciones




      Realiza lo siguiente por favor:

      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)

      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [DoUSBC120] => C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe [110592 2011-10-05] (Grain Media, Inc.) <===== ATTENTION
      C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe 
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\MountPoints2: {5ea6115a-e72a-11e6-8481-80ee732124c9} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL F:\autorun.exe /auto
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\MountPoints2: {b4500ca3-9eff-11e6-8478-80ee732124c9} - "F:\dlusb_launcherC120.exe" 
      GroupPolicy: Restriction - Chrome <======= ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
      HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
      SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
      SearchScopes: HKU\S-1-5-21-1731926948-2928861684-2895723843-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp1_ch&p={searchTerms}
      FF user.js: detected! => C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\user.js [2016-07-07]
      FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      CHR HomePage: Default -> hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
      CHR RestoreOnStartup: Default -> "hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp"
      CHR Extension: (Tumblr Savior) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefddkjnflmjbclpnnoegglmmdfkidip [2017-03-07]
      CHR Extension: (Chrome Media Router) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
      CHR HKLM\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
      S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [X]
      S0 Bhbase; C:\WINDOWS\System32\drivers\Bhbase.sys [47456 2013-09-03] (Baidu, Inc.)
      S3 XDva535; C:\WINDOWS\system32\XDva535.sys [93400 2017-04-02] (())
      S3 XDva536; C:\WINDOWS\system32\XDva536.sys [93768 2017-05-27] (())
      C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe
      2016-11-03 21:07 - 2011-10-05 23:28 - 0110592 ____N (Grain Media, Inc.) C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe
      Task: {072F663C-90FF-42CD-B068-613EE6786B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
      Task: {08877AA3-97E3-4403-B072-35DDD70EC94F} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
      Task: {41136F90-5881-4906-A1C2-797A42D62698} - \Games\UpdateCheck_S-1-5-21-1731926948-2928861684-2895723843-1000 -> No File <==== ATTENTION
      Task: {41DA3330-9ECE-44FE-9BFF-F2E87B0D0AA3} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
      Task: {4551172C-CBB0-4599-8296-91861C1E42BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
      Task: {4A42B8A1-9A6A-49CA-9964-15B9AE3B5074} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
      Task: {53FB8E0C-6426-4067-9DB4-B6BD811B1BC4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
      Task: {5D37E8CA-7CA4-4032-AE38-167AAA80E6A1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
      Task: {6D1440BC-367A-4EFF-B0C7-4280DCF0E7AB} - System32\Tasks\{752E1D9A-FF1D-4A3F-A05C-52E6445E0337} => pcalua.exe -a C:\Users\Valeria\AppData\Local\Temp\Temp2_PortablewinLAME-rc3-full-noinst-custom-r01.zip\PortableWinLAME\PortableWinLAME.exe <==== ATTENTION
      Task: {79EBA179-7304-4CF2-9AE2-989384C7BF65} - System32\Tasks\{E8D8FC6E-BB7E-4E28-B6B2-9828AF5B7FA1} => pcalua.exe -a "C:\Users\Valeria\Desktop\Subtitle Workshop\SubtitleWorkshop.exe" -d C:\Users\Valeria\Desktop\theofficeUK_subt -c "C:\Users\Valeria\Desktop\theofficeUK_subt\theoffices01e01uk.srt"
      C:\Users\Valeria\AppData\Local\Temp\Temp2_PortablewinLAME-rc3-full-noinst-custom-r01.zip\PortableWinLAME\PortableWinLAME.exe
      Task: {7F473071-8E3D-45E3-80BB-59B4BABCBD50} - System32\Tasks\0215avUpdateInfo => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe 
      C:\Users\Valeria\Desktop\theofficeUK_subt
      Task: {93B7626D-21B2-4ACE-AC48-98CE8F4AF145} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
      Task: {9AE4D15F-0D91-4B87-A8A9-5BCD0B622582} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
      Task: {9EE67C8D-E151-4189-B1FD-6803C1F36B34} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
      Task: {B0CDBAF7-CB22-4730-87BB-A58F8CCABAF8} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
      Task: {B61D8239-6C22-4248-81E9-E75866D7EC73} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
      Task: {B6BBACEC-C229-43AC-8805-4BF705855688} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
      Task: {B71C8617-2063-47F5-AD8F-2873A459BD49} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
      Task: {B992529C-18BB-4340-A6B6-19A05CF2C481} - System32\Tasks\1015avzUpdateInfo => C:\ProgramData\Avg_Update_1015avz\1015avz_AVG-Secure-Search-Update.exe 
      Task: {D00D104E-2887-4B3D-B448-267A75E0F704} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
      Task: {D530EB1F-DFA3-4E2D-9012-44F1E62928D2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
      Task: {F6C82E35-B04D-4A43-B1FE-0B2598A63878} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
      Task: C:\WINDOWS\Tasks\0215avUpdateInfo.job => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe
      Task: C:\WINDOWS\Tasks\1015avzUpdateInfo.job => C:\ProgramData\Avg_Update_1015avz\1015avz_AVG-Secure-Search-Update.exe
      C:\ProgramData\Avg_Update_0215av
      AlternateDataStreams: C:\ProgramData\Temp:6DDED7D9 [119]
       
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
      Lo pegas en tu próxima respuesta, y estos otros logs




      Instala y Realiza un escaneo online con ESET Online Scanner usando la version V2
      ESET Online Scanner | InfoSpyware.
      Abres el Eset Online Scanner y lo ejecutas de la siguiente manera:

      1. Dejamos marcada la casilla de Detección de aplicaciones potencialmente no deseadas
      2. Haces click en Configuración adicional o Avanzada y marcamos las casillas como en la imagen:




      • Objetos para explorar actuales >> Cambiar >> Seleccionar todas las unidades del Pc
      • Pulsas en Escanear para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.
      • Cuando acabe haz clic en Finalizar


      Localiza y pega el reporte :

      ESET Online Scanner almacena un archivo de registro de luego de ser ejecutado, el cual puede ser examinado o enviado a ESET para ser analizado. Para ver tal archivo será necesario que la opción Ver archivos y carpetas ocultos se encuentre habilitada. Nuevos registros son agregados a los existentes cuando se ejecutan múltiples exploraciones.

      La ruta del archivo de registro es: C:\users\ TU NOMBRE DE USUARIO\appdata\local\temp\log.txt



      Descarga >> https://www.infospyware.com/antispyware/adwcleaner y colócalo en el escritorio:


      - Ejecútalo con todos los programas cerrados y con el antivirus deshabilitado >>Cómo deshabilitar temporalmente su Antivirus.
      - Si usas Windows Vista/ W 7/W 8, ejecútalo como administrador. (Botón derecho >> Ejecutar como Administrador) , aceptas la licencia (j’acepte) ..


      Presionas y das en Escanear y esperas a que el programa haga lo suyo.
      Ejecutamos Limpiar para realizar la limpieza y si nos pide reiniciar el pc lo hacemos.

      - Al terminar se abrirá un reporte en un archivo de texto, cuyo contenido deberás copiar y pegar en tu próxima respuesta.


      El reporte se encuentra también en C:\AdwCleaner- AdwCleaner[CX].txt



      Descargá la aplicacion zhpcleaner/ a Tu escritorio, pulsando en el boton Telecharger de la página.

      • Cerra todos los navegadores
      • Doble clic para ejecutarlo y Presiona el Botón Scánner. Espera a que termine.
      • Se va a generar un reporte en el escritorio llamado ZHPcleaner.
      • Presiona el Botón Reparar.
      • Cuando termine, cerra todos los programas y reinicia el ordenador.
      • Iniciá el navegador y copias y pegas en Tu próxima respuesta el contenido del reporte que se había generado.
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Hola, aquí están los reportes.


      Fix result of Farbar Recovery Scan Tool (x86) Version: 28-05-2017
      Ran by Valeria (28-05-2017 20:44:39) Run:1
      Running from C:\Users\Valeria\Desktop
      Loaded Profiles: Valeria (Available Profiles: Valeria & Invitado & DefaultAppPool)
      Boot Mode: Normal

      ==============================================

      fixlist content:
      *****************
      Start
      CreateRestorePoint:
      CloseProcesses:

      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\Run: [DoUSBC120] => C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe [110592 2011-10-05] (Grain Media, Inc.) <===== ATTENTION
      C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\MountPoints2: {5ea6115a-e72a-11e6-8481-80ee732124c9} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL F:\autorun.exe /auto
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\...\MountPoints2: {b4500ca3-9eff-11e6-8478-80ee732124c9} - "F:\dlusb_launcherC120.exe"
      GroupPolicy: Restriction - Chrome <======= ATTENTION
      CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
      HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
      SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
      SearchScopes: HKU\S-1-5-21-1731926948-2928861684-2895723843-1000 -> {76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} URL = hxxps://search.yahoo.com/search/?toggle=1&cop=mss&ei=UTF-8&fr=vmn&type=auslog_yaapp1_ch&p={searchTerms}
      FF user.js: detected! => C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\user.js [2016-07-07]
      FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      CHR HomePage: Default -> hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp
      CHR RestoreOnStartup: Default -> "hxxps://search.yahoo.com/?fr=vmn&type=auslog_yaapp1_hp"
      CHR Extension: (Tumblr Savior) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefddkjnflmjbclpnnoegglmmdfkidip [2017-03-07]
      CHR Extension: (Chrome Media Router) - C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
      CHR HKLM\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
      CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
      S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [X]
      S0 Bhbase; C:\WINDOWS\System32\drivers\Bhbase.sys [47456 2013-09-03] (Baidu, Inc.)
      S3 XDva535; C:\WINDOWS\system32\XDva535.sys [93400 2017-04-02] (())
      S3 XDva536; C:\WINDOWS\system32\XDva536.sys [93768 2017-05-27] (())
      C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe
      2016-11-03 21:07 - 2011-10-05 23:28 - 0110592 ____N (Grain Media, Inc.) C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe
      Task: {072F663C-90FF-42CD-B068-613EE6786B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
      Task: {08877AA3-97E3-4403-B072-35DDD70EC94F} - \Microsoft\Windows\Setup\EOONotify -> No File <==== ATTENTION
      Task: {41136F90-5881-4906-A1C2-797A42D62698} - \Games\UpdateCheck_S-1-5-21-1731926948-2928861684-2895723843-1000 -> No File <==== ATTENTION
      Task: {41DA3330-9ECE-44FE-9BFF-F2E87B0D0AA3} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
      Task: {4551172C-CBB0-4599-8296-91861C1E42BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
      Task: {4A42B8A1-9A6A-49CA-9964-15B9AE3B5074} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
      Task: {53FB8E0C-6426-4067-9DB4-B6BD811B1BC4} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
      Task: {5D37E8CA-7CA4-4032-AE38-167AAA80E6A1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
      Task: {6D1440BC-367A-4EFF-B0C7-4280DCF0E7AB} - System32\Tasks\{752E1D9A-FF1D-4A3F-A05C-52E6445E0337} => pcalua.exe -a C:\Users\Valeria\AppData\Local\Temp\Temp2_PortablewinLAME-rc3-full-noinst-custom-r01.zip\PortableWinLAME\PortableWinLAME.exe <==== ATTENTION
      Task: {79EBA179-7304-4CF2-9AE2-989384C7BF65} - System32\Tasks\{E8D8FC6E-BB7E-4E28-B6B2-9828AF5B7FA1} => pcalua.exe -a "C:\Users\Valeria\Desktop\Subtitle Workshop\SubtitleWorkshop.exe" -d C:\Users\Valeria\Desktop\theofficeUK_subt -c "C:\Users\Valeria\Desktop\theofficeUK_subt\theoffices01e01uk.srt"
      C:\Users\Valeria\AppData\Local\Temp\Temp2_PortablewinLAME-rc3-full-noinst-custom-r01.zip\PortableWinLAME\PortableWinLAME.exe
      Task: {7F473071-8E3D-45E3-80BB-59B4BABCBD50} - System32\Tasks\0215avUpdateInfo => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe
      C:\Users\Valeria\Desktop\theofficeUK_subt
      Task: {93B7626D-21B2-4ACE-AC48-98CE8F4AF145} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
      Task: {9AE4D15F-0D91-4B87-A8A9-5BCD0B622582} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
      Task: {9EE67C8D-E151-4189-B1FD-6803C1F36B34} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
      Task: {B0CDBAF7-CB22-4730-87BB-A58F8CCABAF8} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
      Task: {B61D8239-6C22-4248-81E9-E75866D7EC73} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
      Task: {B6BBACEC-C229-43AC-8805-4BF705855688} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
      Task: {B71C8617-2063-47F5-AD8F-2873A459BD49} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
      Task: {B992529C-18BB-4340-A6B6-19A05CF2C481} - System32\Tasks\1015avzUpdateInfo => C:\ProgramData\Avg_Update_1015avz\1015avz_AVG-Secure-Search-Update.exe
      Task: {D00D104E-2887-4B3D-B448-267A75E0F704} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
      Task: {D530EB1F-DFA3-4E2D-9012-44F1E62928D2} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
      Task: {F6C82E35-B04D-4A43-B1FE-0B2598A63878} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
      Task: C:\WINDOWS\Tasks\0215avUpdateInfo.job => C:\ProgramData\Avg_Update_0215av\0215av_AVG-Secure-Search-Update.exe
      Task: C:\WINDOWS\Tasks\1015avzUpdateInfo.job => C:\ProgramData\Avg_Update_1015avz\1015avz_AVG-Secure-Search-Update.exe
      C:\ProgramData\Avg_Update_0215av
      AlternateDataStreams: C:\ProgramData\Temp:6DDED7D9 [119]


      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      *****************

      Restore point was successfully created.
      Processes closed successfully.
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DoUSBC120 => value removed successfully.
      C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe => moved successfully
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5ea6115a-e72a-11e6-8481-80ee732124c9} => key removed successfully.
      HKCR\CLSID\{5ea6115a-e72a-11e6-8481-80ee732124c9} => key not found.
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b4500ca3-9eff-11e6-8478-80ee732124c9} => key removed successfully.
      HKCR\CLSID\{b4500ca3-9eff-11e6-8478-80ee732124c9} => key not found.
      C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
      C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
      HKLM\SOFTWARE\Policies\Google => key removed successfully.
      HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully.
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\Software\Microsoft\Internet Explorer\Main\\Start Page => value restored successfully
      HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} => key removed successfully.
      HKCR\CLSID\{76DEFAE6-09B2-40B2-8F8A-5A6A5D5CE4EB} => key not found.
      C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\user.js => moved successfully
      C:\Users\Valeria\AppData\Roaming\Mozilla\Firefox\Profiles\gpk1fw6l.default\user.js => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.8 => key removed successfully.
      C:\Program Files\VideoLAN\VLC\npvlc.dll => moved successfully
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.1 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.2 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.3 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.0 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.1 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.2 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.3 => key removed successfully.
      "C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found.
      Chrome HomePage => removed successfully.
      Chrome RestoreOnStartup => removed successfully.
      C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\oefddkjnflmjbclpnnoegglmmdfkidip => moved successfully
      C:\Users\Valeria\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully
      HKLM\System\CurrentControlSet\Services\LiveUpdateSvc => key removed successfully.
      LiveUpdateSvc => service removed successfully.
      HKLM\System\CurrentControlSet\Services\Bhbase => key removed successfully.
      Bhbase => service removed successfully.
      HKLM\System\CurrentControlSet\Services\XDva535 => key removed successfully.
      XDva535 => service removed successfully.
      XDva536 => Unable to stop service.
      HKLM\System\CurrentControlSet\Services\XDva536 => key removed successfully.
      XDva536 => service removed successfully.
      "C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe" => not found.
      "C:\Users\Valeria\AppData\Local\Temp\dlusb_launcherC120.exe" => not found.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{072F663C-90FF-42CD-B068-613EE6786B1D} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{072F663C-90FF-42CD-B068-613EE6786B1D} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{08877AA3-97E3-4403-B072-35DDD70EC94F} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{08877AA3-97E3-4403-B072-35DDD70EC94F} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOONotify => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{41136F90-5881-4906-A1C2-797A42D62698} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41136F90-5881-4906-A1C2-797A42D62698} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Games\UpdateCheck_S-1-5-21-1731926948-2928861684-2895723843-1000 => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{41DA3330-9ECE-44FE-9BFF-F2E87B0D0AA3} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{41DA3330-9ECE-44FE-9BFF-F2E87B0D0AA3} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4551172C-CBB0-4599-8296-91861C1E42BB} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4551172C-CBB0-4599-8296-91861C1E42BB} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4A42B8A1-9A6A-49CA-9964-15B9AE3B5074} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4A42B8A1-9A6A-49CA-9964-15B9AE3B5074} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-Weekend => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{53FB8E0C-6426-4067-9DB4-B6BD811B1BC4} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{53FB8E0C-6426-4067-9DB4-B6BD811B1BC4} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5D37E8CA-7CA4-4032-AE38-167AAA80E6A1} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5D37E8CA-7CA4-4032-AE38-167AAA80E6A1} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D1440BC-367A-4EFF-B0C7-4280DCF0E7AB} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D1440BC-367A-4EFF-B0C7-4280DCF0E7AB} => key removed successfully.
      C:\Windows\System32\Tasks\{752E1D9A-FF1D-4A3F-A05C-52E6445E0337} => moved successfully
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{752E1D9A-FF1D-4A3F-A05C-52E6445E0337} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{79EBA179-7304-4CF2-9AE2-989384C7BF65} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{79EBA179-7304-4CF2-9AE2-989384C7BF65} => key removed successfully.
      C:\Windows\System32\Tasks\{E8D8FC6E-BB7E-4E28-B6B2-9828AF5B7FA1} => moved successfully
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E8D8FC6E-BB7E-4E28-B6B2-9828AF5B7FA1} => key removed successfully.
      "C:\Users\Valeria\AppData\Local\Temp\Temp2_PortablewinLAME-rc3-full-noinst-custom-r01.zip\PortableWinLAME\PortableWinLAME.exe" => not found.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F473071-8E3D-45E3-80BB-59B4BABCBD50} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F473071-8E3D-45E3-80BB-59B4BABCBD50} => key removed successfully.
      C:\Windows\System32\Tasks\0215avUpdateInfo => moved successfully
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\0215avUpdateInfo => key removed successfully.
      "C:\Users\Valeria\Desktop\theofficeUK_subt" => not found.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{93B7626D-21B2-4ACE-AC48-98CE8F4AF145} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{93B7626D-21B2-4ACE-AC48-98CE8F4AF145} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\rundetector => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9AE4D15F-0D91-4B87-A8A9-5BCD0B622582} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9AE4D15F-0D91-4B87-A8A9-5BCD0B622582} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{9EE67C8D-E151-4189-B1FD-6803C1F36B34} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9EE67C8D-E151-4189-B1FD-6803C1F36B34} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B0CDBAF7-CB22-4730-87BB-A58F8CCABAF8} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B0CDBAF7-CB22-4730-87BB-A58F8CCABAF8} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B61D8239-6C22-4248-81E9-E75866D7EC73} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B61D8239-6C22-4248-81E9-E75866D7EC73} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B6BBACEC-C229-43AC-8805-4BF705855688} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B6BBACEC-C229-43AC-8805-4BF705855688} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B71C8617-2063-47F5-AD8F-2873A459BD49} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B71C8617-2063-47F5-AD8F-2873A459BD49} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B992529C-18BB-4340-A6B6-19A05CF2C481} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B992529C-18BB-4340-A6B6-19A05CF2C481} => key removed successfully.
      C:\Windows\System32\Tasks\1015avzUpdateInfo => moved successfully
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\1015avzUpdateInfo => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D00D104E-2887-4B3D-B448-267A75E0F704} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D00D104E-2887-4B3D-B448-267A75E0F704} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D530EB1F-DFA3-4E2D-9012-44F1E62928D2} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D530EB1F-DFA3-4E2D-9012-44F1E62928D2} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F6C82E35-B04D-4A43-B1FE-0B2598A63878} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6C82E35-B04D-4A43-B1FE-0B2598A63878} => key removed successfully.
      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully.
      C:\WINDOWS\Tasks\0215avUpdateInfo.job => moved successfully
      C:\WINDOWS\Tasks\1015avzUpdateInfo.job => moved successfully
      "C:\ProgramData\Avg_Update_0215av" => not found.
      C:\ProgramData\Temp => ":6DDED7D9" ADS removed successfully..
      C:\Windows\System32\Drivers\etc\hosts => moved successfully
      Hosts restored successfully.

      ========= RemoveProxy: =========

      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\S-1-5-21-1731926948-2928861684-2895723843-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.


      ========= End of RemoveProxy: =========


      ========= netsh winsock reset =========


      El cat*logo Winsock se restableci¢ correctamente.
      Debe reiniciar el equipo para completar el restablecimiento.


      ========= End of CMD: =========


      ========= ipconfig /renew =========


      Configuraci¢n IP de Windows


      Adaptador de LAN inal*mbrica Wi-Fi:

      Sufijo DNS espec¡fico para la conexi¢n. . :
      V¡nculo: direcci¢n IPv6 local. . . : fe80::7948:c0ff:9084:a960%13
      Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.26
      M*scara de subred . . . . . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada . . . . . : 192.168.0.1

      ========= End of CMD: =========


      ========= ipconfig /flushdns =========


      Configuraci¢n IP de Windows

      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

      ========= End of CMD: =========


      ========= bitsadmin /reset /allusers =========


      BITSADMIN version 3.0
      BITS administration utility.
      (C) Copyright 2000-2006 Microsoft Corp.

      BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
      Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

      {4111B3BE-D888-4D8C-9495-B71A04E9E7C1} canceled.
      {3F2D1382-32B4-482D-A253-557832909BCD} canceled.
      {AED1279B-056C-41B9-9AFD-78E94EE4C31C} canceled.
      3 out of 3 jobs canceled.

      ========= End of CMD: =========


      =========== EmptyTemp: ==========

      BITS transfer queue => 32768 B
      DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 126035524 B
      Java, Flash, Steam htmlcache => 506 B
      Windows/system/drivers => 347783 B
      Edge => 0 B
      Chrome => 777131385 B
      Firefox => 8586993 B
      Opera => 0 B

      Temp, IE cache, history, cookies, recent:
      Default => 0 B
      Users => 0 B
      ProgramData => 0 B
      Public => 0 B
      systemprofile => 0 B
      LocalService => 34862 B
      NetworkService => 1920 B
      Valeria => 11059400 B
      Invitado => 197159 B
      DefaultAppPool => 0 B

      RecycleBin => 285630238 B
      EmptyTemp: => 1.1 GB temporary data Removed.

      ================================


      The system needed a reboot.

      ==== End of Fixlog 20:45:57 ====

    8. #8
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      re: Malwarebytes: Unable to connect the service (Solucionado)

      20:53:45 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL.exe=2.0.16.0
      # EOSSerial=f864cb0e35d2af4f8de9566d7e61c268
      # end=init
      # utc_time=2017-05-28 23:53:44
      # local_time=2017-05-28 20:53:44 (-0300, Hora estándar de Argentina)
      # country="Spain"
      # osver=10.0.14393 NT
      20:53:50 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL.exe=2.0.16.0
      # EOSSerial=f864cb0e35d2af4f8de9566d7e61c268
      # end=init
      # utc_time=2017-05-28 23:53:49
      # local_time=2017-05-28 20:53:49 (-0300, Hora estándar de Argentina)
      # country="Spain"
      # osver=10.0.14393 NT
      20:57:25 Call m_esets_charon_setup_create
      20:57:25 Call m_esets_charon_create
      20:57:25 m_esets_charon_create OK
      20:57:25 Call m_esets_charon_start_send_thread
      20:57:25 Call m_esets_charon_setup_set
      20:57:25 m_esets_charon_setup_set OK
      20:57:27 Updating
      20:57:27 Update Init
      20:57:37 Call m_esets_charon_setup_create
      20:57:37 Call m_esets_charon_create
      20:57:37 m_esets_charon_setup_set ERROR
      20:57:37 Update Download
      21:04:59 esets_scanner_reload returned 0
      21:04:59 g_uiModuleBuild: 33537
      21:04:59 Update Finalize
      21:04:59 Call m_esets_charon_send
      21:04:59 Call m_esets_charon_destroy
      21:04:59 Updated modules version: 33537
      21:05:09 Call m_esets_charon_setup_create
      21:05:09 Call m_esets_charon_create
      21:05:09 m_esets_charon_setup_set ERROR
      21:05:09 Scanner engine: 33537
      22:53:41 # product=EOS
      # version=8
      # flags=0
      # ESETOnlineScanner_ESL.exe=2.0.16.0
      # EOSSerial=f864cb0e35d2af4f8de9566d7e61c268
      # engine=33537
      # end=finished
      # remove_checked=true
      # archives_checked=true
      # unwanted_checked=true
      # unsafe_checked=true
      # antistealth_checked=true
      # sfx_checked=true
      # utc_time=2017-05-29 01:53:40
      # local_time=2017-05-28 22:53:40 (-0300, Hora estándar de Argentina)
      # country="Spain"
      # lang=1033
      # osver=10.0.14393 NT
      # compatibility_mode_1='Avast Antivirus'
      # compatibility_mode=798 16777213 66 88 0 42871380 0 0
      # compatibility_mode_1=''
      # compatibility_mode=5893 16776574 100 94 632078 26443658 0 0
      # scanned=2
      # found=0
      # cleaned=0
      # scan_time=6519
      22:53:53 Call m_esets_charon_send
      22:53:53 Call m_esets_charon_destroy
      22:53:55 RecursiveRemoveDirectoryAndAllFiles: C:\Users\Valeria\AppData\Local\ESET\ESETOnlineScanner\Quarantine\

    9. #9
      Usuario Avatar de mirissa
      Registrado
      dic 2009
      Ubicación
      Argentina
      Mensajes
      47

      re: Malwarebytes: Unable to connect the service (Solucionado)

      # AdwCleaner v6.047 - Archivo de registro creado 28/05/2017 en 23:39:08
      # Actualizado en 19/05/2017 por Malwarebytes
      # Base de datos : 2017-05-26.6 [Servidor]
      # Sistema Operativo : Windows 10 Home (X86)
      # Nombre de usuario : Valeria - VALERIA-PE
      # Ejecutado desde : C:\Users\Valeria\Desktop\adwcleaner_6.047.exe
      # Modo: Limpiar
      # Soporte : https://www.malwarebytes.com/support



      ***** [ Servicios ] *****



      ***** [ Carpetas ] *****

      [-] Carpeta eliminada: C:\Users\Valeria\AppData\Roaming\IObit\Advanced SystemCare
      [-] Carpeta eliminada: C:\Users\Invitado\AppData\Roaming\IObit\Advanced SystemCare
      [-] Carpeta eliminada: C:\ProgramData\IObit\ASCDownloader
      [-] Carpeta eliminada: C:\ProgramData\IObit\Advanced SystemCare
      [-] Carpeta eliminada: C:\Program Files\Common Files\IObit\Advanced SystemCare


      ***** [ Archivos ] *****



      ***** [ DLL ] *****



      ***** [ WMI ] *****



      ***** [ Accesos directos ] *****



      ***** [ Tareas programadas ] *****



      ***** [ Registro ] *****

      [-] Llave eliminada: HKLM\SOFTWARE\IOBIT\ASC


      ***** [ Navegadores ] *****



      *************************

      :: Llaves "Tracing" eliminadas
      :: Se han borrado los ajustes de Winsock

      *************************

      C:\AdwCleaner\AdwCleaner[C0].txt - [3097 Bytes] - [24/01/2017 20:17:37]
      C:\AdwCleaner\AdwCleaner[C2].txt - [1316 Bytes] - [28/05/2017 23:39:08]
      C:\AdwCleaner\AdwCleaner[R0].txt - [2540 Bytes] - [23/01/2015 20:52:33]
      C:\AdwCleaner\AdwCleaner[R1].txt - [15730 Bytes] - [19/05/2015 19:36:07]
      C:\AdwCleaner\AdwCleaner[R2].txt - [15790 Bytes] - [19/05/2015 19:41:33]
      C:\AdwCleaner\AdwCleaner[S0].txt - [4392 Bytes] - [23/01/2015 20:57:49]
      C:\AdwCleaner\AdwCleaner[S1].txt - [6751 Bytes] - [19/05/2015 19:44:43]
      C:\AdwCleaner\AdwCleaner[S2].txt - [3210 Bytes] - [24/01/2017 20:16:31]
      C:\AdwCleaner\AdwCleaner[S3].txt - [2205 Bytes] - [28/05/2017 23:38:29]

      ########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1902 Bytes] ##########



      ~ ZHPCleaner v2017.5.25.85 by Nicolas Coolman (2017/05/25)
      ~ Run by Valeria (Administrator) (28/05/2017 23:55:22)
      ~ Web: https://www.nicolascoolman.com
      ~ Blog: https://nicolascoolman.eu/
      ~ Facebook : https://www.facebook.com/nicolascoolman1
      ~ State version : Version OK
      ~ Type : Reparar
      ~ Report : C:\Users\Valeria\Desktop\ZHPCleaner.txt
      ~ Quarantine : C:\Users\Valeria\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
      ~ UAC : Activate
      ~ Boot Mode : Normal (Normal boot)
      Windows 10 Home, 32-bit (Build 14393)


      ---\\ Servicios (0)
      ~ No malintencionados o innecesarios artículos encontrados.


      ---\\ Navegadores de Internet (1)
      BORRADOS: [gpk1fw6l.default] - user_pref("network.http.request.max-start-delay", 0); =>.Superfluous.MaxStart


      ---\\ Archivo hosts (1)
      ~ El archivo hosts es legítimo (1)


      ---\\ Tareas automáticas programadas. (0)
      ~ No malintencionados o innecesarios artículos encontrados.


      ---\\ Explorador ( Archivos, Carpetas ) (31)
      MOVIDO carpeta: C:\Windows\Installer\wix{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}.SchedServiceConfig.rmi =>.Superfluous.Empty
      MOVIDO carpeta: C:\Windows\Installer\wix{2D6E3D97-1FDF-4993-AC75-72F59EC445C5}.SchedServiceConfig.rmi =>.Superfluous.Empty
      MOVIDO carpeta: C:\Windows\Installer\wix{BCF16F16-AC0E-4ABE-A9EF-412CF484BA51}.SchedServiceConfig.rmi =>.Superfluous.Empty
      MOVIDO carpeta: C:\Windows\Installer\wix{F53D678E-238F-4A71-9742-08BB6774E9DC}.SchedServiceConfig.rmi =>.Superfluous.Empty
      MOVIDO carpeta: C:\Users\Valeria\AppData\Local\Temp\nsc2CE6.tmp =>.Superfluous.Temporary.Empty
      MOVIDO archivo: C:\Program Files\QuickTime =>Riskware.QuickTime
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\Software =>PUP.Optional.Boxore
      MOVIDO archivo: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime =>Riskware.QuickTime
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{0C311FCB-96CB-4404-98CB-9C60C4444E5D} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{10E4EE62-0273-478C-9C1A-718CBE0100CC} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{1EA086B5-FF7A-4B1C-9388-7642D1F82BBD} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{241B1BD5-469A-413D-926F-DFB5819F3CF7} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{2B1685E6-6555-401A-9205-77158F495836} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{2C475D7D-8DF3-448C-BEB4-118EE4FCDD70} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{2EE5C07A-8092-4DAC-832A-DE8D1C5A2BF4} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{351CC5B1-2EA3-46F4-8DFD-272C9884958C} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{460BC366-7414-4F1B-95FB-2712ECDDD71A} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{4B28A13F-1196-4589-ABDD-CEF71A2C30E4} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{4B88A7BE-DAED-4963-AB69-8AAE2457D387} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{542A5882-01DD-4EBC-BA61-5179FCC88DE3} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{6C2D8C47-E608-4AEE-9C7B-B791008A7A2B} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{70B5CAFE-A5D4-44FF-8B63-DEA05D9BE464} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{84033EDB-CAE2-4C99-82C3-45BB14301BD4} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{845914B2-4131-417B-A2F0-D9F6EFE6C6BA} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{89261E4A-5B6E-475D-A23E-0636AFD68123} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{8AAC0E44-CBCA-4417-8DB3-BD07B4FAE9EE} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{A25A0C7B-1590-4F2E-97CC-D54142D30460} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{AE83D3EE-C8E2-439B-A37F-BCBE8ADA44B5} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{D6A4F0A9-00E2-4E88-B35E-17D1BFA3572D} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{DD1BDE68-67B6-4862-A6C4-349A7D6F92ED} =>.Superfluous.Empty
      MOVIDO archivo: C:\Users\Valeria\AppData\Local\{E2ADA9C0-39ED-4DEF-B3CF-8D74E7195704} =>.Superfluous.Empty


      ---\\ Registro ( Claves, Valores, Datos) (2)
      BORRADOS clave*: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} [Google Inc.] =>Heuristic.Suspect
      BORRADOS valor: HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\Advanced SystemCare 9 [0x020000000000000000000000] =>.Superfluous.AdvanceSystemCare


      ---\\ Resumen de elementos en su estación de trabajo (7)
      https://www.anti-malware.top/2016/06...uous-maxstart/ =>.Superfluous.MaxStart
      https://nicolascoolman.eu/2017/01/20...els-superflus/ =>.Superfluous.Empty
      https://nicolascoolman.eu/2017/01/20...els-superflus/ =>.Superfluous.Temporary.Empty
      https://nicolascoolman.eu/2017/01/15...are-quicktime/ =>Riskware.QuickTime
      https://nicolascoolman.eu/2017/03/14...tional-boxore/ =>PUP.Optional.Boxore
      https://nicolascoolman.eu/2017/01/28/heuristic-suspect/ =>Heuristic.Suspect
      https://www.anti-malware.top/2016/10...ncesystemcare/ =>.Superfluous.AdvanceSystemCare


      ---\\ Limpieza adicional. (1)
      ~ Clave de registro Tracing borrados (1)
      ~ Quitar los antiguos informes de ZHPCleaner. (0)


      ---\\ Resultado de la reparación.
      ~ Reparación llevada a cabo con éxito
      ~ falta este navegador! (Opera Software)


      ---\\ Statistiques
      ~ Items escaneado : 928
      ~ Items encontrado : 0
      ~ artículos cancelados : 0
      ~ Items reparado : 34


      ~ End of clean in 00h01mn03s
      ~====================
      ZHPCleaner-[R]-28052017-23_56_25.txt
      ZHPCleaner-[S]-28052017-23_53_33.txt

    10. #10
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      18.171

      re: Malwarebytes: Unable to connect the service (Solucionado)

      Instalas Malwarebytes (Solo Este por ahora) y comentas si va bien


      https://www.infospyware.com/antivirus/malwarebytes/
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo