• Registrarse
  • Iniciar sesión


  • Página 1 de 2 12 ÚltimoÚltimo
    Resultados 1 al 10 de 12

    Alguien que me ayude se me cierra el navegador de un momento a otro.(Solucionado)

    Buenas amigos les queria pedir el favor y analizar mi log de hijackthis ya que tengo problemas cuando estoy navegando,sea por crome o mozilla de un momento a otro se cae la navegacion de la ...

          
    1. #1
      Usuario Avatar de poison1000
      Registrado
      jun 2015
      Ubicación
      colombia
      Mensajes
      8

      Alguien que me ayude se me cierra el navegador de un momento a otro.(Solucionado)

      Buenas amigos les queria pedir el favor y analizar mi log de hijackthis ya que tengo problemas cuando estoy navegando,sea por crome o mozilla de un momento a otro se cae la navegacion de la pagina que este visitando y me toca actualizar... otras veces simplemente me sale que el navegador dejo de funcionar y debe cerrarse y esto es muy incomodo ya le pase adwcleaner y me dejo algunos malware aca les dejo mi log:


      Logfile of Trend Micro HijackThis v2.0.5
      Scan saved at 16:43:11, on 01/06/2017
      Platform: Windows 7 SP1 (WinNT 6.00.3505)
      MSIE: Internet Explorer v9.00 (9.00.8112.16684)

      FIREFOX: 53.0.3 (x86 es-ES)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\taskhost.exe
      C:\Windows\system32\Dwm.exe
      C:\Windows\Explorer.EXE
      C:\Program Files\Common Files\Java\Java Update\jusched.exe
      C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerAssistant.exe
      C:\Program Files\CCleaner\CCleaner.exe
      C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
      C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Users\Master\Downloads\hijackthis\HijackThis.exe
      C:\Program Files\Google\Chrome\Application\chrome.exe
      C:\Windows\system32\DllHost.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
      O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll
      O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL
      O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL
      O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
      O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerAssistant.exe" -H
      O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICIO LOCAL')
      O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICIO LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'Servicio de red')
      O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'Servicio de red')
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
      O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
      O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIE.dll
      O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
      O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll
      O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
      O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\Office16\ONBttnIELinkedNotes.dll
      O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
      O15 - Trusted Zone: http://help.eset.com (HKLM)
      O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
      O17 - HKLM\System\CCS\Services\Tcpip\..\{B5CFBFCE-276D-4F10-93F7-988E2D82D8E9}: NameServer = 8.8.8.8,208.67.220.220
      O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
      O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: BlackBerry Device Manager - BlackBerry Limited - C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
      O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
      O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Motorola Device Manager Service (Motorola Device Manager) - Motorola Mobility LLC - C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
      O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
      O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: PST Service - Motorola - C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: BlackBerry Link Communication Manager (RIM Tunnel Service) - BlackBerry Limited - C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe
      O23 - Service: RosettaStoneDaemon - Rosetta Stone Ltd. - C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
      O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe
      O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (StiSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
      O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

      --
      End of file - 20406 bytes

    2. #2
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      17.924

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Descarga e instala Malwarebytes , si no lo tienes instalado/actualizado,>> https://www.infospyware.com/antivirus/malwarebytes/

      NOTA: Justo en el momento de finalizar la instalación del programa, si dejamos marcada la casilla (opcional)"Activar la versión de prueba de Malwarebytes Anti-Malware PREMIUM" (como figura por defecto), tendremos en funcionamiento durante 14 días esta versión de prueba que incluye la protección residente del programa .Si no vamos a comprar o no queremos probar la versión pro ,desactivamos esa casilla y no pulsar en activar versión de prueba de la versión Premium ,posteriormente en la interfaz
      Abre el programa Malwarebytes :

      1. Vamos a la pestaña Analizar su pc
      2. Elegimos Análisis de Amenzas
      3. Pulsamos Iniciar Analisis
      4. Si nos sale aviso de nuevas actualizaciones, pulsamos en Actualizar Ahora
      5. Una vez finalizado "elegir una acción para los posibles elementos detectados" >>Pulsamos Eliminar Seleccionados
      y asi se enviaran a Cuarentena.
      • El sistema pedirá Reiniciar para completar la limpieza.
      • Para acceder posteriormente al informe del análisis :
        - Informes >> Registro de análisis >>Pulsar en >> Exportar >>Copiar al Portapapeles, y lo pegas en tu respuesta




      Descargá la aplicacion zhpcleaner/ a Tu escritorio, pulsando en el boton Telecharger de la página.

      • Cerra todos los navegadores
      • Doble clic para ejecutarlo y Presiona el Botón Scánner. Espera a que termine.
      • Se va a generar un reporte en el escritorio llamado ZHPcleaner.
      • Presiona el Botón Reparar.
      • Cuando termine, cerra todos los programas y reinicia el ordenador.
      • Iniciá el navegador y copias y pegas en Tu próxima respuesta el contenido del reporte que se había generado.




      1-Descarga Farbar Recovery Scan Tool By Farbar (Descarga el archivo dependiendo de la arquitectura de tu sistema).>> Como saber si mi sistema es de 32 o de 64 Bits

      • La guardas en el escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.

      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.

      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta. Utiliza dos mensajes si te dice que es muy largo.





      Pegas logs en orden y comentas como va el pc
      Última edición por @Miguelgrado fecha: 16/06/17 a las 01:32:57
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de poison1000
      Registrado
      jun 2015
      Ubicación
      colombia
      Mensajes
      8

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Buenas compañero un poco tarde traigo mis logs despues de lo que me pedistes:


      Malwarebytes Anti-Malware
      www.malwarebytes.org

      Fecha del análisis: 02/06/2017
      Hora del análisis: 13:00
      Archivo de registro: reporte malwarebytes.txt
      Administrador: Sí

      Versión: 2.2.1.1043
      Base de datos de malwares: v2017.06.02.06
      Base de datos de rootkits: v2017.05.27.01
      Licencia: Prueba
      Protección contra el malware: Activado
      Protección contra sitios web maliciosos: Activado
      Autoprotección: Desactivado

      SO: Windows 7 Service Pack 1
      CPU: x86
      Sistema de archivos: NTFS
      Usuario: Master

      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 229174
      Tiempo transcurrido: 7 min, 13 seg

      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Activado
      PUM: Activado

      Procesos: 0
      (No hay elementos maliciosos detectados)

      Módulos: 0
      (No hay elementos maliciosos detectados)

      Claves del registro: 1
      RiskWare.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\TNod, , [7ef053e79a0f1a1c78dbe388d8282bd5],

      Valores del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Carpetas: 0
      (No hay elementos maliciosos detectados)

      Archivos: 10
      RiskWare.Agent, C:\Program Files\TNod\TNODUP.exe, , [e18da496812872c43c178be08c7443bd],
      RiskWare.Agent, C:\Program Files\TNod\uninst-tnod.exe, , [7ef053e79a0f1a1c78dbe388d8282bd5],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.myway.com_0.localstorage, , [84eaed4dd7d2152140b37758a65c53ad],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.myway.com_0.localstorage-journal, , [1658fd3d69405adcc33012bd70920ff1],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_translationbuddy.dl.myway.com_0.localstorage, , [84ea0c2efcad67cff0031eb16b974cb4],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_translationbuddy.dl.myway.com_0.localstorage-journal, , [3d316ad0b3f660d6f9fa23ac24de15eb],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.tb.ask.com_0.localstorage, , [c3ab73c7c1e84beba64e0bc458aa5da3],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_easypdfcombine.dl.tb.ask.com_0.localstorage-journal, , [cf9f1723d3d60a2c28cc7b54d92903fd],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_translationbuddy.dl.tb.ask.com_0.localstorage, , [e18dfa40e0c9a393af4510bff90947b9],
      PUP.Optional.MindSpark, C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_translationbuddy.dl.tb.ask.com_0.localstorage-journal, , [412df248f7b250e6ca2a5f70808242be],

      Sectores físicos: 0
      (No hay elementos maliciosos detectados)


      (end)



      aca el de zhpcleaner:


      ~ ZHPCleaner v2017.6.1.87 by Nicolas Coolman (2017/06/01)
      ~ Run by Master (Administrator) (02/06/2017 13:32:49)
      ~ Web: https://www.nicolascoolman.com
      ~ Blog: https://nicolascoolman.eu/
      ~ Facebook : https://www.facebook.com/nicolascoolman1
      ~ State version : Version OK
      ~ Type : Reparar
      ~ Report : C:\Users\Master\Desktop\ZHPCleaner.txt
      ~ Quarantine : C:\Users\Master\AppData\Roaming\ZHP\ZHPCleaner_Reg.txt
      ~ UAC : Deactivate
      ~ Boot Mode : Normal (Normal boot)
      Windows 7 Home Premium, 32-bit Service Pack 1 (Build 7601)


      ---\\ Servicios (0)
      ~ No malintencionados o innecesarios artículos encontrados.


      ---\\ Navegadores de Internet (0)
      ~ No malintencionados o innecesarios artículos encontrados.


      ---\\ Archivo hosts (0)
      ~ No malintencionados o innecesarios artículos encontrados.


      ---\\ Tareas automáticas programadas. (0)
      ~ No malintencionados o innecesarios artículos encontrados.


      ---\\ Explorador ( Archivos, Carpetas ) (22)
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\1496180937S.bin =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\1496180960S.bin =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\2E2B89B0 =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\adb.log =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\cpuz_driver_2180.log =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\DeleteOnReboot.bat =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\e4j6602.tmp =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\etilqs_bvySzH32CCflnJg =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\etilqs_gXvhnVeteOJRQzH =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\etilqs_uTALgEY3uyQdhrK =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\etilqs_UWteFVZTOq3tTHx =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\etilqs_WThJNsBfV8GehiW =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\evb2CB0.tmp =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\i4j_nlog_1.log =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\wmplog00.sqm =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\wmplog01.sqm =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\~DF634E4BD2E7A1AB40.TMP =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\~DF7D9218C313E4918A.TMP =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\~DFC3BDC9CA92F4FAAF.TMP =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\~DFC6CC975A4E2B5527.TMP =>.Superfluous.Temporary.Empty
      MOVIDO carpeta: C:\Users\Master\AppData\Local\Temp\~DFF1C9CC3A392B58F3.TMP =>.Superfluous.Temporary.Empty
      MOVIDO archivo: C:\Users\Master\AppData\Local\MSfree Inc =>HackTool.WinActivator


      ---\\ Registro ( Claves, Valores, Datos) (5)
      BORRADOS dados: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{B5CFBFCE-276D-4F10-93F7-988E2D82D8E9}\\DhcpNameServer [Bad : 200.13.249.101 200.31.208.101] =>Hijacker.Browser
      BORRADOS dados: HKLM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer [Bad : 200.13.249.101 200.31.208.101] =>Hijacker.Browser
      BORRADOS clave*: HKEY_USERS\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Tencent [] =>.Superfluous.Tencent
      BORRADOS clave: HKCU\Software\Tencent [] =>.Superfluous.Tencent
      BORRADOS clave*: HKLM\SYSTEM\CurrentControlSet\Services\IObitUnlocker [] =>.Superfluous.Elex


      ---\\ Resumen de elementos en su estación de trabajo (5)
      https://nicolascoolman.eu/2017/01/20...els-superflus/ =>.Superfluous.Temporary.Empty
      https://nicolascoolman.eu/2017/01/13...-winactivator/ =>HackTool.WinActivator
      https://nicolascoolman.eu/2017/02/02...ker-browser-2/ =>Hijacker.Browser
      https://nicolascoolman.eu/2017/02/23/tencentadressbar/ =>.Superfluous.Tencent
      https://nicolascoolman.eu/2017/03/28/superfluous-elex/ =>.Superfluous.Elex


      ---\\ Limpieza adicional. (18)
      ~ Clave de registro Tracing borrados (18)
      ~ Quitar los antiguos informes de ZHPCleaner. (0)


      ---\\ Resultado de la reparación.
      ~ Reparación llevada a cabo con éxito


      ---\\ Statistiques
      ~ Items escaneado : 2429
      ~ Items encontrado : 0
      ~ artículos cancelados : 0
      ~ Items reparado : 27


      ~ End of clean in 00h00mn56s
      ~====================
      ZHPCleaner-[R]-02062017-13_33_45.txt
      ZHPCleaner-[S]-02062017-13_30_07.txt



      y el ultimo el de farbar:


      Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02-06-2017
      Ran by Master (administrator) on MASTER-PC (02-06-2017 13:34:13)
      Running from C:\Users\Master\Desktop
      Loaded Profiles: Master (Available Profiles: Master)
      Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Español (España, internacional)
      Internet Explorer Version 9 (Default browser: Chrome)
      Boot Mode: Normal
      Tutorial for Farbar Recovery Scan Tool: ***********************************************************************************************************

      ==================== Processes (Whitelisted) =================

      (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

      (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
      (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
      (Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
      (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
      () C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerAssistant.exe
      (Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
      (Rosetta Stone Ltd.) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
      (Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
      (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe

      ==================== Registry (Whitelisted) ====================

      (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

      HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
      HKLM\...\Run: [UnlockerAssistant] => C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerAssistant.exe [17408 2010-07-04] ()
      HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [7347928 2017-02-07] (Piriform Ltd)

      ==================== Internet (Whitelisted) ====================

      (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

      Tcpip\..\Interfaces\{B5CFBFCE-276D-4F10-93F7-988E2D82D8E9}: [NameServer] 8.8.8.8,208.67.220.220

      Internet Explorer:
      ==================
      HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/es-co/?ocid=iehp
      BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2017-05-27] (Microsoft Corporation)
      BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-29] (Oracle Corporation)
      BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2017-05-27] (Microsoft Corporation)
      BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-27] (Microsoft Corporation)
      BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-29] (Oracle Corporation)
      Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
      Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
      Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)
      Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-27] (Microsoft Corporation)

      FireFox:
      ========
      FF DefaultProfile: jpaorcgv.default
      FF ProfilePath: C:\Users\Master\AppData\Roaming\Mozilla\Firefox\Profiles\jpaorcgv.default [2017-06-02]
      FF Homepage: Mozilla\Firefox\Profiles\jpaorcgv.default -> google.com
      FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-12] ()
      FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-29] (Oracle Corporation)
      FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-29] (Oracle Corporation)
      FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-27] (Microsoft Corporation)
      FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-27] (Microsoft Corporation)
      FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2015-05-22] ()
      FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
      FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
      FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
      FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-04] (Adobe Systems Inc.)
      FF Plugin HKU\S-1-5-21-1821953171-2937338977-2678338347-1000: @acestream.net/acestreamplugin,version=3.1.16 -> C:\Users\Master\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]

      Chrome:
      =======
      CHR StartupUrls: Default -> "hxxp://google.com.co/"
      CHR DefaultSearchURL: Default -> hxxp://search.searchvzc.com/s?remove=remove&query={searchTerms}
      CHR Profile: C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default [2017-06-02]
      CHR Extension: (Presentaciones de Google) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-16]
      CHR Extension: (Google Docs) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-03-26]
      CHR Extension: (Google Drive) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-03-26]
      CHR Extension: (YouTube) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-03-26]
      CHR Extension: (Adobe Acrobat) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-04-25]
      CHR Extension: (Hojas de cálculo de Google) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-16]
      CHR Extension: (Documentos de Google sin conexión) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-03-26]
      CHR Extension: (PowerPoint Online) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdafamggmaaaginooondinjgkgcbpnhp [2017-04-01]
      CHR Extension: (Sistema de pagos de Chrome Web Store) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-26]
      CHR Extension: (Gmail) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-03-26]
      CHR Extension: (Chrome Media Router) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-14]
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhmeggicckjohfhgocjieomdmmanmocd] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx

      ==================== Services (Whitelisted) ====================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 BlackBerry Device Manager; C:\Program Files\Common Files\Research In Motion\USB Drivers\BbDevMgr.exe [588024 2014-10-31] (BlackBerry Limited)
      R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2585800 2017-05-14] (Microsoft Corporation)
      R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2166040 2017-02-13] (ESET)
      S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
      S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
      R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2014-04-08] (Motorola Mobility LLC)
      R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
      S4 RIM MDNS; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\mDNSResponder.exe [396024 2015-05-26] (Apple Inc.)
      S2 RIM Tunnel Service; C:\Program Files\Common Files\Research In Motion\Tunnel Manager\tunmgr.exe [1355000 2015-05-26] (BlackBerry Limited)
      R2 RosettaStoneDaemon; C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe [1646608 2012-06-19] (Rosetta Stone Ltd.)
      R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2009-07-13] (Microsoft Corporation)

      ===================== Drivers (Whitelisted) ======================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6.sys [22528 2015-01-23] (BlackBerry Limited)
      S3 csrusbfilter; C:\Windows\System32\Drivers\csrusbfilter.sys [20168 2012-03-22] (Cambridge Silicon Radio Limited)
      R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [206472 2017-02-13] (ESET)
      R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [156288 2017-02-13] (ESET)
      R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [141448 2017-02-13] (ESET)
      R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82320 2010-01-29] (EZB Systems, Inc.)
      S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
      S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation)
      R3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [461824 2009-04-28] (PixArt Imaging Inc.)
      S3 qcusbser; C:\Windows\System32\DRIVERS\qcusbser.sys [216632 2017-03-15] (QUALCOMM Incorporated)
      S3 RimUsb; C:\Windows\System32\Drivers\RimUsb.sys [69120 2015-01-14] (BlackBerry Limited)
      R3 rimvndis; C:\Windows\System32\Drivers\rimvndis6.sys [14848 2015-05-26] (BlackBerry Limited)
      S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [554816 2016-03-09] (Realtek Semiconductor Corporation)
      S3 Secdrv; C:\Windows\system32\drivers\SECDRV.SYS [11968 2000-07-29] () [File not signed]
      S3 usbUDisc; C:\Windows\System32\DRIVERS\USBDrv.sys [14936 2013-01-25] (Scott)
      S3 csravrcp; system32\DRIVERS\csravrcp.sys [X]
      S3 CsrBthAudioHF; system32\DRIVERS\CsrBthAudioHF.sys [X]
      S3 CsrBtPort; system32\DRIVERS\CsrBtPort.sys [X]
      S3 csrhfgcc; system32\DRIVERS\csrhfgcc.sys [X]
      S3 csrhidmini; system32\DRIVERS\csrhidmini.sys [X]
      S3 csrserial; system32\DRIVERS\csrserial.sys [X]
      S3 csrusb; System32\Drivers\csrusb.sys [X]
      S3 csr_bthav; system32\drivers\csrbthav.sys [X]
      S3 ESETCleanersDriver; \??\C:\Windows\system32\Drivers\ESETCleanersDriver.sys [X]
      U5 UnlockerDriver5; C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
      S3 WinRing0_1_2_0; \??\O:\mio usb hdd\driverpack\DRP_17.6.6_Offline\bin\tools\openhardwaremonitor\OpenHardwareMonitor.sys [X]

      ==================== NetSvcs (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== One Month Created files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-06-02 13:34 - 2017-06-02 13:34 - 00012731 _____ C:\Users\Master\Desktop\FRST.txt
      2017-06-02 13:34 - 2017-06-02 13:34 - 00000000 ____D C:\FRST
      2017-06-02 13:30 - 2017-06-02 13:33 - 00004864 _____ C:\Users\Master\Desktop\ZHPCleaner.txt
      2017-06-02 13:19 - 2017-06-02 13:33 - 00000000 ____D C:\Users\Master\AppData\Roaming\ZHP
      2017-06-02 13:19 - 2017-06-02 13:19 - 00000840 _____ C:\Users\Master\Desktop\ZHPCleaner.lnk
      2017-06-02 13:19 - 2017-06-02 13:19 - 00000000 ____D C:\Users\Master\AppData\Local\ZHP
      2017-06-02 13:11 - 2017-06-02 13:11 - 00003083 _____ C:\Users\Master\Desktop\reporte malwarebytes.txt
      2017-06-02 12:59 - 2017-06-02 13:00 - 01774080 _____ (Farbar) C:\Users\Master\Desktop\FRST.exe
      2017-06-02 12:58 - 2017-06-02 12:59 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
      2017-06-02 12:58 - 2017-06-02 12:58 - 00001071 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
      2017-06-02 12:58 - 2017-06-02 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
      2017-06-02 12:58 - 2017-06-02 12:58 - 00000000 ____D C:\ProgramData\Malwarebytes
      2017-06-02 12:58 - 2017-06-02 12:58 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
      2017-06-02 12:58 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
      2017-06-02 12:58 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
      2017-06-02 12:58 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
      2017-06-02 12:57 - 2017-06-02 12:58 - 02777600 _____ C:\Users\Master\Desktop\ZHPCleaner.exe
      2017-06-02 12:55 - 2017-06-02 12:56 - 22851472 _____ (Malwarebytes ) C:\Users\Master\Downloads\mbam-setup-2.2.1.1043.exe
      2017-06-02 10:38 - 2017-06-02 10:38 - 00000000 ____D C:\Users\Master\AppData\Roaming\MPC-HC
      2017-06-01 17:35 - 2017-06-01 17:39 - 00000000 ____D C:\Users\Master\Desktop\Miracle Without Box Crack 2.29 100% Working
      2017-06-01 16:28 - 2017-06-01 16:46 - 00000000 ____D C:\Users\Master\Downloads\hijackthis
      2017-06-01 14:01 - 2017-06-01 14:01 - 00000176 _____ C:\Users\Master\Downloads\restablecer-winsock.zip
      2017-06-01 14:01 - 2017-06-01 14:01 - 00000000 ____D C:\Users\Master\Downloads\restablecer-winsock
      2017-06-01 14:00 - 2017-06-01 14:00 - 00000179 _____ C:\Users\Master\Downloads\reinstalar-tcp-ip.zip
      2017-06-01 14:00 - 2017-06-01 14:00 - 00000000 ____D C:\Users\Master\Downloads\reinstalar-tcp-ip
      2017-06-01 13:58 - 2017-06-01 13:58 - 00000424 _____ C:\Users\Master\Downloads\ReeplazarHost2.zip
      2017-06-01 13:58 - 2017-06-01 13:58 - 00000000 ____D C:\Users\Master\Downloads\ReeplazarHost2
      2017-06-01 12:48 - 2017-06-01 12:50 - 00000000 ____D C:\Users\Master\Desktop\SamsungToolPRO27.2
      2017-06-01 12:18 - 2017-06-01 12:23 - 00000000 ____D C:\Users\Master\Documents\Android_MTK
      2017-06-01 12:14 - 2017-06-01 12:16 - 00000000 ____D C:\Users\Master\Desktop\NCK BOX CRACK FULL
      2017-06-01 12:00 - 2017-06-01 12:00 - 00001921 _____ C:\Users\Master\Desktop\AvengersMain 1.2.lnk
      2017-06-01 12:00 - 2017-06-01 12:00 - 00000000 ____D C:\Gsm_X_Team
      2017-06-01 11:59 - 2017-06-01 11:59 - 17207249 _____ C:\Users\Master\Downloads\Avengers 1.2 Setup.exe.7z
      2017-06-01 11:58 - 2017-06-01 11:59 - 17545142 _____ (Gsm_X_Team ) C:\Users\Master\Downloads\Avengers 1.2 Setup.exe
      2017-06-01 11:55 - 2017-06-01 11:55 - 00000000 ____D C:\Users\Master\.swt
      2017-06-01 11:54 - 2017-06-01 12:44 - 00000000 ____D C:\Users\Master\AppData\Roaming\Azureus
      2017-06-01 11:54 - 2017-06-01 11:57 - 00000000 ____D C:\Users\Master\Documents\Vuze Downloads
      2017-06-01 11:54 - 2017-06-01 11:54 - 00001805 _____ C:\Users\Public\Desktop\Vuze.lnk
      2017-06-01 11:54 - 2017-06-01 11:54 - 00001805 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vuze.lnk
      2017-06-01 11:54 - 2017-06-01 11:54 - 00000000 ____D C:\Program Files\Vuze
      2017-06-01 11:53 - 2017-06-01 11:53 - 00091808 _____ (Azureus Software, Inc.) C:\Users\Master\Downloads\VuzeBittorrentClientInstaller.exe
      2017-06-01 11:52 - 2017-06-01 11:52 - 00026986 _____ C:\Users\Master\Downloads\All cracked box 2015 2016.allal123.torrent
      2017-06-01 11:39 - 2017-06-01 11:39 - 00211586 _____ C:\Users\Master\Downloads\Listado.pdf
      2017-05-30 19:27 - 2017-05-30 19:27 - 00139008 _____ C:\Windows\Minidump\053017-19875-01.dmp
      2017-05-30 17:00 - 2017-05-30 17:21 - 00000000 ____D C:\Users\Master\Downloads\bluescreenview
      2017-05-30 16:59 - 2017-05-30 16:59 - 00067310 _____ C:\Users\Master\Downloads\bluescreenview.zip
      2017-05-30 16:58 - 2017-05-30 16:59 - 17815040 _____ C:\Users\Master\Downloads\dbg_x86_6.11.1.404.msi
      2017-05-30 16:53 - 2017-05-30 19:27 - 162029314 _____ C:\Windows\MEMORY.DMP
      2017-05-30 16:53 - 2017-05-30 16:53 - 00138960 _____ C:\Windows\Minidump\053017-21828-01.dmp
      2017-05-30 15:43 - 2017-05-30 15:43 - 04110280 _____ C:\Users\Master\Downloads\adwcleaner_6.047.exe
      2017-05-29 10:12 - 2017-05-30 19:27 - 00000000 ____D C:\Windows\Minidump
      2017-05-28 16:06 - 2017-05-28 16:06 - 00001033 _____ C:\Users\Public\Desktop\CPUID CPU-Z.lnk
      2017-05-28 16:06 - 2017-05-28 16:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
      2017-05-28 16:06 - 2017-05-28 16:06 - 00000000 ____D C:\Program Files\CPUID
      2017-05-28 16:05 - 2017-05-28 16:05 - 01704136 _____ ( ) C:\Users\Master\Downloads\cpu-z_1.79-en.exe
      2017-05-27 14:29 - 2017-05-27 14:29 - 00000000 ____D C:\Users\Master\Downloads\Android Multi Tools v1.02b.zip
      2017-05-27 14:28 - 2017-05-27 14:28 - 04785588 _____ C:\Users\Master\Downloads\Android Multi Tools v1.02b.zip.rar
      2017-05-27 14:10 - 2017-05-27 14:10 - 00000000 ____D C:\Users\Master\Desktop\allwinner master driver
      2017-05-27 14:10 - 2013-01-25 04:48 - 00014936 _____ (Scott) C:\Windows\system32\Drivers\USBDrv.sys
      2017-05-27 14:07 - 2017-05-27 14:07 - 08721423 _____ C:\Users\Master\Downloads\allwinner master driver.rar
      2017-05-27 14:02 - 2017-05-27 14:02 - 00000292 _____ C:\Users\Master\Downloads\Handle.ini
      2017-05-27 13:57 - 2017-05-27 13:57 - 00002122 _____ C:\Users\Master\Desktop\Miracle box 2.27a.lnk
      2017-05-27 13:46 - 2017-05-27 13:46 - 00000574 _____ C:\Users\Master\Desktop\GpGtool.lnk
      2017-05-27 13:45 - 2017-05-27 13:46 - 00000000 ____D C:\Gpg
      2017-05-27 13:45 - 2017-05-27 13:45 - 00000000 ____D C:\Users\Master\Downloads\GPG Android Tool By GPGIndustries
      2017-05-27 13:44 - 2017-05-27 13:45 - 00875569 _____ C:\Users\Master\Downloads\GPG Android Tool By GPGIndustries.rar
      2017-05-27 13:33 - 2017-05-27 13:33 - 00000000 ____D C:\Users\Master\AppData\Roaming\ADBDriverInstaller
      2017-05-27 13:32 - 2017-05-27 13:32 - 00000000 ____D C:\Users\Master\Downloads\adbdriver
      2017-05-27 13:31 - 2017-05-27 13:32 - 09667561 _____ C:\Users\Master\Downloads\adbdriver.zip
      2017-05-27 13:13 - 2017-05-27 13:13 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
      2017-05-27 13:03 - 2017-05-27 13:03 - 00000000 ____D C:\Users\Master\Downloads\packsr
      2017-05-27 13:01 - 2017-05-27 13:02 - 31873291 _____ C:\Users\Master\Downloads\packsr.rar
      2017-05-20 16:27 - 2017-05-20 16:30 - 00000000 ____D C:\Users\Master\Desktop\MP3 (CLASICOS ROCK & POP)
      2017-05-18 16:41 - 2015-01-27 15:40 - 00000000 ____D C:\ADB Tools
      2017-05-18 16:23 - 2017-05-18 16:41 - 00000000 ____D C:\Users\Master\Desktop\ADB Bajar de 5.0.2 a 4.4.4
      2017-05-18 15:04 - 2017-05-11 17:05 - 43026405 ____N C:\Users\Master\Desktop\VID_20170511_170407897.mp4
      2017-05-08 13:08 - 2017-05-08 13:08 - 00000020 ___SH C:\Users\Master\ntuser.ini
      2017-05-07 18:47 - 2017-05-07 18:47 - 00035425 _____ C:\Users\Master\Downloads\Qualcomm9008.rar
      2017-05-07 18:47 - 2017-05-07 18:47 - 00000000 ____D C:\Users\Master\Downloads\QPST
      2017-05-07 18:45 - 2017-05-07 18:46 - 26964617 _____ C:\Users\Master\Downloads\QPST.zip
      2017-05-07 18:39 - 2017-05-07 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
      2017-05-07 18:39 - 2016-05-08 04:27 - 03613696 _____ (x264vfw project) C:\Windows\system32\x264vfw.dll
      2017-05-07 18:39 - 2015-12-18 04:00 - 00674816 _____ C:\Windows\system32\xvidcore.dll
      2017-05-07 18:39 - 2015-12-18 04:00 - 00282112 _____ C:\Windows\system32\xvidvfw.dll
      2017-05-07 18:39 - 2015-10-24 11:00 - 00112128 _____ C:\Windows\system32\ff_vfw.dll
      2017-05-07 18:39 - 2012-07-21 05:54 - 00122880 _____ (fccHandler) C:\Windows\system32\ac3acm.acm
      2017-05-07 18:39 - 2011-12-07 12:32 - 00216064 _____ ( ) C:\Windows\system32\lagarith.dll
      2017-05-07 18:38 - 2017-05-07 18:39 - 00000000 ____D C:\Program Files\K-Lite Codec Pack
      2017-05-07 18:33 - 2017-05-07 18:34 - 44819912 _____ (KLCP ) C:\Users\Master\Downloads\K-Lite_Codec_Pack_1310_Mega.exe
      2017-05-07 17:56 - 2017-05-07 17:56 - 00001149 _____ C:\Users\Public\Desktop\IObit Unlocker.lnk
      2017-05-07 17:56 - 2017-05-07 17:56 - 00000000 ____D C:\Users\Master\Downloads\IObit.Unlocker.v1.1.MULTi-FREE
      2017-05-07 17:56 - 2017-05-07 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Unlocker
      2017-05-07 17:56 - 2017-05-07 17:56 - 00000000 ____D C:\ProgramData\IObit
      2017-05-07 17:56 - 2017-05-07 17:56 - 00000000 ____D C:\Program Files\IObit
      2017-05-07 17:55 - 2017-05-07 17:55 - 02374366 _____ C:\Users\Master\Downloads\IObit.Unlocker.v1.1.MULTi-FREE.rar
      2017-05-07 17:44 - 2017-05-07 17:44 - 00113964 _____ C:\Users\Master\Downloads\unlocker1.9.0-portable.zip
      2017-05-07 17:44 - 2017-05-07 17:44 - 00000000 ____D C:\Users\Master\Downloads\unlocker1.9.0-portable
      2017-05-06 18:45 - 2017-05-06 19:39 - 00000000 ____D C:\platform-tools
      2017-05-06 17:30 - 2017-05-06 17:34 - 00000000 ____D C:\Users\Master\Downloads\XT1032_FALCON_RETUGLB_5.1_LPB23.13-58_cid9_CFC.xml
      2017-05-06 17:17 - 2017-05-06 18:47 - 00000000 ____D C:\Users\Master\Downloads\mfastboot-v2 [AndroidPixel]
      2017-05-06 17:13 - 2017-05-06 17:13 - 01429301 _____ C:\Users\Master\Downloads\mfastboot-v2 [AndroidPixel].zip
      2017-05-06 17:11 - 2017-05-06 17:28 - 586128951 _____ C:\Users\Master\Downloads\XT1032_FALCON_RETUGLB_5.1_LPB23.13-58_cid9_CFC.xml.zip
      2017-05-06 14:32 - 2017-05-06 14:32 - 00000000 ____D C:\Unlook-BootLoader-motorola
      2017-05-06 14:31 - 2017-05-06 14:31 - 00000000 ____D C:\Users\Master\Downloads\Unlook-BootLoader-motorola
      2017-05-06 14:24 - 2017-05-06 12:27 - 00529292 _____ C:\Users\Master\Documents\ADB Tools.rar
      2017-05-06 13:50 - 2017-05-06 13:50 - 00000969 _____ C:\Users\Public\Desktop\Flasher.lnk
      2017-05-06 13:50 - 2017-05-06 13:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DevPhone
      2017-05-06 13:49 - 2017-05-06 15:21 - 00000000 ____D C:\Program Files\DevPhone
      2017-05-06 13:48 - 2017-05-06 13:48 - 00000000 ____D C:\Users\Master\Downloads\Flasher v2
      2017-05-06 13:38 - 2017-05-06 13:47 - 272953032 _____ C:\Users\Master\Downloads\Flasher v2.zip
      2017-05-06 11:30 - 2017-05-06 11:30 - 00000000 ____D C:\ProgramData\Motorola
      2017-05-06 11:29 - 2017-05-06 11:29 - 00000000 ____D C:\Users\Master\AppData\Roaming\Motorola Mobility
      2017-05-06 11:28 - 2017-05-06 11:29 - 00000000 ____D C:\Program Files\Motorola Mobility
      2017-05-06 11:28 - 2017-05-06 11:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Motorola Device Manager
      2017-05-06 11:28 - 2017-05-06 11:28 - 00000000 ____D C:\Program Files\MSXML 4.0
      2017-05-06 11:28 - 2017-05-06 11:28 - 00000000 ____D C:\Program Files\Motorola
      2017-05-06 11:28 - 2017-05-06 11:28 - 00000000 ____D C:\Program Files\Common Files\MSSoap
      2017-05-06 11:27 - 2017-05-06 11:27 - 00000000 ____D C:\Program Files\Common Files\Motorola Shared
      2017-05-06 11:26 - 2017-05-06 11:26 - 00000000 ____D C:\Users\Master\AppData\Roaming\Motorola
      2017-05-06 11:24 - 2017-05-06 11:26 - 34236544 _____ (Motorola Mobility) C:\Users\Master\Downloads\MotorolaDeviceManager_2.5.4.exe
      2017-05-03 16:48 - 2016-03-09 16:53 - 00554816 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\Drivers\RtkBtfilter.sys
      2017-05-03 13:53 - 2017-05-03 13:53 - 00002204 _____ C:\Users\Master\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
      2017-05-03 13:53 - 2017-05-03 13:53 - 00002101 _____ C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
      2017-05-03 13:53 - 2017-05-03 13:53 - 00002101 _____ C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
      2017-05-03 13:53 - 2017-05-03 13:53 - 00000000 ___RD C:\Users\Master\OneDrive
      2017-05-03 13:53 - 2017-05-03 13:53 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
      2017-05-03 13:53 - 2017-05-03 13:53 - 00000000 ____D C:\Program Files\Microsoft OneDrive
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002606 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive para la Empresa.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002468 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype Empresarial 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002419 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002400 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002382 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002373 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002371 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002331 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00002327 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher 2016.lnk
      2017-05-03 13:45 - 2017-05-03 13:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Herramientas de Microsoft Office 2016
      2017-05-03 13:42 - 2017-05-27 13:14 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
      2017-05-03 13:39 - 2017-05-27 13:10 - 00000000 ____D C:\Program Files\Microsoft Office
      2017-05-03 13:39 - 2017-05-03 13:39 - 00000000 ____D C:\Program Files\Microsoft Office 15
      2017-05-03 11:48 - 2017-05-03 15:48 - 00000000 ____D C:\Users\Master\Documents\Oficce plus 2016

      ==================== One Month Modified files and folders ========

      (If an entry is included in the fixlist, the file/folder will be moved.)

      2017-06-02 13:18 - 2017-02-13 21:13 - 00000000 ____D C:\Users\Master\AppData\LocalLow\Mozilla
      2017-06-02 12:35 - 2009-07-13 23:34 - 00016832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
      2017-06-02 12:35 - 2009-07-13 23:34 - 00016832 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
      2017-06-02 10:43 - 2017-03-20 18:55 - 00000000 ____D C:\Program Files\Opera
      2017-06-02 10:36 - 2017-04-01 16:31 - 00000000 ____D C:\Temp
      2017-06-02 10:36 - 2009-07-13 23:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
      2017-06-01 16:59 - 2011-04-11 20:30 - 00746992 _____ C:\Windows\system32\perfh00A.dat
      2017-06-01 16:59 - 2011-04-11 20:30 - 00158464 _____ C:\Windows\system32\perfc00A.dat
      2017-06-01 16:59 - 2010-11-20 16:01 - 01675926 _____ C:\Windows\system32\PerfStringBackup.INI
      2017-06-01 16:59 - 2009-07-13 21:37 - 00000000 ____D C:\Windows\inf
      2017-06-01 15:46 - 2017-02-13 20:38 - 00000000 ____D C:\Users\Master\AppData\Roaming\vlc
      2017-06-01 13:48 - 2017-03-18 18:52 - 00000000 ____D C:\AdwCleaner
      2017-06-01 12:38 - 2017-04-16 20:13 - 00000000 ____D C:\Program Files\Octoplus Samsung GSMSINDH
      2017-06-01 11:55 - 2017-02-13 20:09 - 00000000 ____D C:\Users\Master
      2017-05-30 14:51 - 2017-02-21 14:22 - 00000000 ____D C:\ProgramData\SP_FT_Logs
      2017-05-30 14:46 - 2017-04-19 13:55 - 00000000 ____D C:\Users\Master\Downloads\SP_Flash_Tool_v5.1348.00 by Herhy
      2017-05-30 14:46 - 2017-03-25 11:38 - 00000000 ____D C:\Users\Master\Documents\ROMS
      2017-05-27 16:13 - 2017-03-07 21:13 - 00000000 ____D C:\Users\Master\Documents\Digital Viewer
      2017-05-27 16:12 - 2017-04-01 21:05 - 00000069 _____ C:\Windows\NeroDigital.ini
      2017-05-27 13:13 - 2009-07-13 21:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
      2017-05-27 12:56 - 2017-04-16 09:49 - 00000000 ____D C:\Windows\4941BFEB62C047A2801E998FC469CC2C.TMP
      2017-05-25 12:05 - 2017-02-13 21:08 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
      2017-05-24 18:33 - 2017-02-13 21:08 - 00000000 ____D C:\Program Files\Mozilla Firefox
      2017-05-11 16:40 - 2017-03-26 16:43 - 00002146 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
      2017-05-11 16:40 - 2017-03-26 16:43 - 00002134 _____ C:\Users\Public\Desktop\Google Chrome.lnk
      2017-05-08 18:59 - 2017-04-29 12:15 - 00000000 ____D C:\Program Files\Yawcam
      2017-05-07 18:55 - 2017-04-13 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QPST
      2017-05-07 18:48 - 2017-04-01 16:01 - 00000000 ____D C:\Users\Master\Downloads\Qualcomm9008
      2017-05-07 18:18 - 2009-07-13 23:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
      2017-05-06 11:27 - 2017-02-13 20:53 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
      2017-05-05 22:54 - 2017-04-22 17:08 - 00000000 ____D C:\Program Files\KingRoot
      2017-05-04 14:07 - 2009-07-13 23:53 - 00032578 _____ C:\Windows\Tasks\SCHEDLGU.TXT
      2017-05-03 17:00 - 2009-07-13 23:33 - 00425656 _____ C:\Windows\system32\FNTCACHE.DAT
      2017-05-03 14:09 - 2017-02-13 20:17 - 00110560 _____ C:\Users\Master\AppData\Local\GDIPFONTCACHEV1.DAT

      ==================== Files in the root of some directories =======

      2017-02-18 21:36 - 2016-11-23 08:37 - 0000570 _____ () C:\Users\Master\AppData\Local\TroubleshooterConfig.json

      ==================== Bamital & volsnap ======================

      (There is no automatic fix for files that do not pass verification.)

      C:\Windows\explorer.exe => File is digitally signed
      C:\Windows\system32\winlogon.exe => File is digitally signed
      C:\Windows\system32\wininit.exe => File is digitally signed
      C:\Windows\system32\svchost.exe => File is digitally signed
      C:\Windows\system32\services.exe => File is digitally signed
      C:\Windows\system32\User32.dll
      [2010-11-20 16:29] - [2010-11-20 16:29] - 0811520 _____ (Microsoft Corporation) 8626F0C30D4E3564FFDD25C90F4426F1

      C:\Windows\system32\userinit.exe => File is digitally signed
      C:\Windows\system32\rpcss.dll => File is digitally signed
      C:\Windows\system32\dnsapi.dll => File is digitally signed
      C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

      LastRegBack: 2017-05-25 12:25

      ==================== End of FRST.txt ============================

    4. #4
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      17.924

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Malwarebytes comprueba que lo que detecto esta todo en donde pone "cuarentena"


      Marcaste todo y diste a eliminar??



      Malwarebttres esta en la version 3.1.2, por lo que deberias de actualizarlo desde el link que te puese y hacer iuna nueva revision


      Ademas falta uno de los logs de Fabar, el Adition.txt
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    5. #5
      Usuario Avatar de poison1000
      Registrado
      jun 2015
      Ubicación
      colombia
      Mensajes
      8

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Cita Originalmente publicado por @Miguelgrado Ver Mensaje
      Malwarebytes comprueba que lo que detecto esta todo en donde pone "cuarentena"


      Marcaste todo y diste a eliminar??



      Malwarebttres esta en la version 3.1.2, por lo que deberias de actualizarlo desde el link que te puese y hacer iuna nueva revision


      Ademas falta uno de los logs de Fabar, el Adition.txt


      Listo compañero aca esta mi logs que faltaban y elimine todolo que faltaba de cuarentena en malwarebyts:


      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 13/6/17
      Hora del análisis: 17:59
      Archivo de registro: malwarebytes.txt
      Administrador: Sí

      -Información del software-
      Versión: 3.1.2.1733
      Versión de los componentes: 1.0.122
      Versión del paquete de actualización: 1.0.2146
      Licencia: Prueba

      -Información del sistema-
      SO: Windows 7 Service Pack 1
      CPU: x86
      Sistema de archivos: NTFS
      Usuario: Master-PC\Master

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 241087
      Amenazas detectadas: 3
      Amenazas en cuarentena: 3
      Tiempo transcurrido: 3 min, 45 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Activado
      PUM: Activado

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 1
      RiskWare.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\TNod, En cuarentena, [432], [352776],1.0.2146

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 2
      RiskWare.Agent, C:\PROGRAM FILES\TNOD\TNODUP.EXE, En cuarentena, [432], [352776],1.0.2146
      RiskWare.Agent, C:\PROGRAM FILES\TNOD\UNINST-TNOD.EXE, En cuarentena, [432], [352776],1.0.2146

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)


      y el addition de fabar:

      Additional scan result of Farbar Recovery Scan Tool (x86) Version: 02-06-2017
      Ran by Master (02-06-2017 13:34:41)
      Running from C:\Users\Master\Desktop
      Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2017-02-14 01:08:57)
      Boot Mode: Normal
      ==========================================================


      ==================== Accounts: =============================

      Administrador (S-1-5-21-1821953171-2937338977-2678338347-500 - Administrator - Disabled)
      HomeGroupUser$ (S-1-5-21-1821953171-2937338977-2678338347-1002 - Limited - Enabled)
      Invitado (S-1-5-21-1821953171-2937338977-2678338347-501 - Limited - Disabled)
      Master (S-1-5-21-1821953171-2937338977-2678338347-1000 - Administrator - Enabled) => C:\Users\Master

      ==================== Security Center ========================

      (If an entry is included in the fixlist, it will be removed.)

      AV: ESET NOD32 Antivirus 9.0.408.1 (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
      AS: ESET NOD32 Antivirus 9.0.408.1 (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
      AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

      ==================== Installed Programs ======================

      (Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

      µTorrent (HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\...\uTorrent) (Version: 3.4.9.43388 - BitTorrent Inc.)
      7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
      A.M.T.T GSM Aladdin versión 1_34 (HKLM\...\{229F7981-433B-4705-AACE-EC556E5F9EB9}_is1) (Version: 1_34 - ALL MOBILE TIPS AND TRICKS)
      Adobe Acrobat Reader DC - Español (HKLM\...\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
      Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
      AIDA64 Extreme v5.80 (HKLM\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.)
      Android tol by gpg 1.00 (HKLM\...\Android tol by gpg 1.00) (Version: 1.00 - GPGIndustries)
      Avengers Main 1.2 (HKLM\...\Avengers Main 1.2) (Version: 1.2 - Gsm_X_Team)
      BlackBerry 10 Desktop Software (Blend, Link, Drivers) (HKLM\...\{c33e77db-89b5-4abf-a1d1-97f8b35347e1}) (Version: 1.2.0.52 - BlackBerry)
      BlackBerry Blend (Version: 1.2.0.50 - BlackBerry Ltd.) Hidden
      BlackBerry Communication Drivers (Version: 8.0.0.143 - BlackBerry Ltd.) Hidden
      BlackBerry Device Drivers (Version: 8.0.0.143 - BlackBerry Ltd.) Hidden
      BlackBerry Link (Version: 1.2.4.39 - BlackBerry) Hidden
      BlackBerry Link Remover (Version: 1.2.4.0 - BlackBerry Ltd.) Hidden
      CCleaner (HKLM\...\CCleaner) (Version: 5.27 - Piriform)
      CPUID CPU-Z 1.79 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
      ESET NOD32 Antivirus (HKLM\...\{BD8F1498-ED07-4A5E-8A3D-8431CB43D959}) (Version: 9.0.377.1 - ESET, spol. s r.o.)
      Flasher versión 2.0.0 (HKLM\...\{74E51EFE-FF45-4253-8BC0-B317AEC9459C}_is1) (Version: 2.0.0 - DevPhoneMx)
      Google Chrome (HKLM\...\Google Chrome) (Version: 58.0.3029.110 - Google Inc.)
      Google Update Helper (Version: 1.3.33.5 - Google Inc.) Hidden
      iLook 300 (HKLM\...\{7EF900F4-61A8-4D95-8A65-488D3BECA206}) (Version: 1.0.0.28 - )
      Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - )
      IObit Unlocker (HKLM\...\IObit Unlocker_is1) (Version: 1.1 - IObit)
      Java 8 Update 131 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
      KingRoot version 3.5.0.1157 (HKLM\...\{FA3B7324-9EB4-4ADC-84D0-5461BE113832}_is1) (Version: 3.5.0.1157 - KingRoot)
      K-Lite Mega Codec Pack 13.1.0 (HKLM\...\KLiteCodecPack_is1) (Version: 13.1.0 - KLCP)
      Malwarebytes Anti-Malware versión 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
      MegaDownloader 1.7 (HKLM\...\{C12C2297-65A4-4E64-9AE1-29F0D947FDA0}}_is1) (Version: 1.7 - AppsForMega.info)
      Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
      Microsoft Office Profesional Plus 2016 - es-es (HKLM\...\ProPlusRetail - es-es) (Version: 16.0.8067.2115 - Microsoft Corporation)
      Microsoft OneDrive (HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
      Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
      Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
      Miracle box Mb 2.27a (HKLM\...\Miracle box Mb 2.27a) (Version: - )
      Miracle Falcon Box (HKLM\...\Miracle Falcon Box) (Version: 1.5 - Miracle Team)
      Motorola Device Manager (HKLM\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.5.4 - Motorola Mobility)
      Motorola Device Software Update (Version: 13.09.3001 - Motorola Mobility) Hidden
      Motorola Mobile Drivers Installation 6.4.0 (HKLM\...\{BA562260-B4FA-4D87-ADC5-963783028C68}) (Version: 6.4.0 - Motorola Mobility LLC)
      Mozilla Firefox 53.0.3 (x86 es-ES) (HKLM\...\Mozilla Firefox 53.0.3 (x86 es-ES)) (Version: 53.0.3 - Mozilla)
      Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0.3.6347 - Mozilla)
      MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
      Nero 8 Lite 8.3.6.0 (HKLM\...\Nero8Lite_is1) (Version: 8.3.6.0 - Updatepack.nl)
      Octopus Box Samsung software 2.4.8 (HKLM\...\Octoplus Box Samsung software_is1) (Version: - Octoplus team)
      Office 16 Click-to-Run Extensibility Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Licensing Component (Version: 16.0.8067.2115 - Microsoft Corporation) Hidden
      Office 16 Click-to-Run Localization Component (Version: 16.0.7967.2073 - Microsoft Corporation) Hidden
      Opera Stable 45.0.2552.888 (HKLM\...\Opera 45.0.2552.888) (Version: 45.0.2552.888 - Opera Software)
      Paquete de idioma de Microsoft .NET Framework 4.5 ESN (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 3082) (Version: 4.5.50709 - Microsoft Corporation)
      Plugable Digital Viewer (HKLM\...\Plugable Technologies Plugable Digital Viewer) (Version: 3.1.07 - Plugable Technologies)
      QPST 2.7 (HKLM\...\{90BA4578-EE5C-47A3-AB5D-2254708AB111}) (Version: 2.7.425 - Qualcomm)
      Rosetta Stone Language Training (HKLM\...\{00384623-4937-4D7D-BDD9-23513D1C50AB}) (Version: 5.0.37.0 - Rosetta Stone, Ltd)
      Rosetta Stone Ltd Services (HKLM\...\{3165E4A6-D5DE-46B0-8597-D55E2B826B84}) (Version: 3.2.21 - Rosetta Stone Ltd.)
      SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)
      TNod User & Password Finder (HKLM\...\TNod) (Version: 1.6.1.0 - Tukero[X]Team)
      UltraISO Premium V9.53 (HKLM\...\UltraISO_is1) (Version: - )
      VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
      Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.7.5.0 - Azureus Software, Inc.)
      Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/27/2012 7.0.0000.00001) (HKLM\...\8F9C586770119C5E2691CBF69E16EE1E8513B728) (Version: 08/27/2012 7.0.0000.00001 - Google, Inc.)
      Windows Driver Package - MediaTek Inc. (usbser) Ports (05/30/2011 1.1123.0) (HKLM\...\9F57DFB5B4E90E617CAF60510F56318C1F80CC8C) (Version: 05/30/2011 1.1123.0 - MediaTek Inc.)
      Windows Driver Package - MediaTek Inc. (usbser) Ports (11/15/2007 5.1.2600.0) (HKLM\...\1C5CFF9BD49397D32DDD8D47E3AC26557809E1C5) (Version: 11/15/2007 5.1.2600.0 - MediaTek Inc.)
      Yawcam 0.6.0 (HKLM\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version: 0.6.0 - Yawcam)

      ==================== Custom CLSID (Whitelisted): ==========================

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


      ==================== Scheduled Tasks (Whitelisted) =============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      Task: {0836DECE-E9C7-451D-A97E-CBDC8C2E0DE4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-04-12] (Adobe Systems Incorporated)
      Task: {2203AFCE-19C0-4036-8DC8-409CAF2B1E55} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
      Task: {50397F30-789D-4744-8C6E-D6A4E6467FAA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-05-27] (Microsoft Corporation)
      Task: {53051B5F-C409-4899-AB23-B60E869CA051} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1821953171-2937338977-2678338347-1000
      Task: {7F5D3238-AFBE-4F6E-BC4B-E3D7B13F869C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-05-27] (Microsoft Corporation)
      Task: {98FD30FE-DA28-486C-8561-7384C0EDEAD1} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-14] (Microsoft Corporation)
      Task: {9E21D055-7448-42A5-B7E0-26B7F37904B5} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
      Task: {A131D961-66E3-4B1E-B08B-1CA6BAAAD679} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-02-07] (Piriform Ltd)
      Task: {B03E9A17-CC9E-4272-83B5-5C6122AE13AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-03-26] (Google Inc.)
      Task: {B8F6E9FD-414B-4F5B-96A8-FEF391A55B05} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
      Task: {BC0A529B-0A29-4716-BB5E-F3D3CAD7EF70} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-27] ()
      Task: {BE1A213E-0F1B-4B8F-B09D-8712090CDE0A} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2017-04-14] ()
      Task: {CA0E334C-D59E-4850-8331-6B43F5D3BCBE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2017-05-27] ()
      Task: {E82BC981-6B99-47D8-B0FA-86FEBD082725} - System32\Tasks\Motorola Device Manager Update => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2014-10-30] ()
      Task: {EB6CA191-8528-4705-8765-B93D811EEBB7} - System32\Tasks\Opera scheduled Autoupdate 1490054207 => C:\Program Files\Opera\launcher.exe [2017-05-31] (Opera Software)
      Task: {FBD98023-AE54-49BE-B40F-35E0B79D4295} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-03-26] (Google Inc.)

      (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


      ==================== Shortcuts =============================

      (The entries could be listed to be restored or removed.)

      ==================== Loaded Modules (Whitelisted) ==============

      2017-05-07 17:44 - 2010-07-04 14:32 - 00004608 _____ () C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerHook.dll
      2014-04-07 09:31 - 2014-04-07 09:31 - 00172032 _____ () C:\Program Files\Motorola Mobility\Motorola Device Manager\css_core.dll
      2017-05-07 17:44 - 2010-07-04 12:51 - 00017408 _____ () C:\Users\Master\Downloads\unlocker1.9.0-portable\x86\UnlockerAssistant.exe

      ==================== Alternate Data Streams (Whitelisted) =========

      (If an entry is included in the fixlist, only the ADS will be removed.)


      ==================== Safe Mode (Whitelisted) ===================

      (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


      ==================== Association (Whitelisted) ===============

      (If an entry is included in the fixlist, the registry item will be restored to default or removed.)


      ==================== Internet Explorer trusted/restricted ===============

      (If an entry is included in the fixlist, it will be removed from the registry.)


      ==================== Hosts content: ===============================

      (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

      2009-07-13 21:04 - 2017-06-01 13:58 - 00000021 __RSH C:\Windows\system32\Drivers\etc\hosts

      127.0.0.1 localhost

      ==================== Other Areas ============================

      (Currently there is no automatic fix for this section.)

      HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Master\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
      DNS Servers: 8.8.8.8 - 208.67.220.220
      HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
      Windows Firewall is enabled.

      ==================== MSCONFIG/TASK MANAGER disabled items ==

      MSCONFIG\Services: AdobeARMservice => 2
      MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
      MSCONFIG\Services: BtSwitcherService => 2
      MSCONFIG\Services: CSRBtAudioService => 2
      MSCONFIG\Services: CsrBtOBEXService => 2
      MSCONFIG\Services: CsrBtService => 2
      MSCONFIG\Services: FLEXnet Licensing Service => 3
      MSCONFIG\Services: gupdate => 2
      MSCONFIG\Services: gupdatem => 3
      MSCONFIG\Services: lmhosts => 2
      MSCONFIG\Services: ose => 3
      MSCONFIG\Services: osppsvc => 3
      MSCONFIG\Services: RIM MDNS => 2
      MSCONFIG\Services: wscsvc => 2
      MSCONFIG\Services: WSearch => 2
      MSCONFIG\Services: wuauserv => 2
      MSCONFIG\startupreg: AceStream => C:\Users\Master\AppData\Roaming\ACEStream\engine\ace_engine.exe
      MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\BlueStacks\HD-Agent.exe
      MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
      MSCONFIG\startupreg: CsrAudioguiCtrl => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrAudioguiCtrl.exe
      MSCONFIG\startupreg: CSRHarmonySkypePlugin => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CSRHarmonySkypePlugin.exe
      MSCONFIG\startupreg: CsrHCRPServer => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrHCRPServer.exe
      MSCONFIG\startupreg: CsrSyncMLServer => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\CsrSyncMLServer.exe
      MSCONFIG\startupreg: HarmonyUserStartup => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\HarmonyUserStartup.exe
      MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
      MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
      MSCONFIG\startupreg: PAC7302_Monitor => C:\Windows\PixArt\PAC7302\Monitor.exe
      MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
      MSCONFIG\startupreg: RIM PeerManager => "C:\Program Files\Common Files\Research In Motion\Tunnel Manager\PeerManager.exe"
      MSCONFIG\startupreg: RIMBBLaunchAgent.exe => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
      MSCONFIG\startupreg: TNOD UP => "C:\Program Files\TNod\TNODUP.exe" /i
      MSCONFIG\startupreg: TrayApplication => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\TrayApplication.exe
      MSCONFIG\startupreg: vksts => C:\Program Files\CSR\CSR Harmony Wireless Software Stack\vksts.exe

      ==================== FirewallRules (Whitelisted) ===============

      (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

      FirewallRules: [{47C4E692-9AD4-4C97-9124-49E1F40E0E20}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
      FirewallRules: [{40F5C4B3-9510-4B16-9111-469ED3D34CA9}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [{9821C8FE-200F-4ED0-B3E6-168CEAF7DE4E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
      FirewallRules: [TCP Query User{8DAD3AF3-6473-465E-BF5D-4C6EABC3DD6B}C:\users\master\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\master\appdata\roaming\acestream\engine\ace_engine.exe
      FirewallRules: [UDP Query User{DD19B2E9-7972-4896-91E1-F18C8569472E}C:\users\master\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\master\appdata\roaming\acestream\engine\ace_engine.exe
      FirewallRules: [{3FBC5CBF-0EC6-4898-AE87-BB4566AF7725}] => (Allow) tunmgr.exe
      FirewallRules: [{041BCB75-D6DD-4916-91AB-61A1632D7BCB}] => (Allow) tunmgr.exe
      FirewallRules: [{037F63F4-36F3-48F4-B3FB-D60CF7960994}] => (Allow) mDNSResponder.exe
      FirewallRules: [{D1AE481D-2767-4244-9DC2-8929AD6227A0}] => (Allow) mDNSResponder.exe
      FirewallRules: [{A8D1689A-67C4-4884-A10B-926D5117F1DB}] => (Allow) C:\Program Files\Common Files\Research In Motion\nginx\nginx.exe
      FirewallRules: [{8A62C066-8F08-4F6D-BEFA-4C0A2474CE62}] => (Allow) C:\Program Files\Common Files\Research In Motion\tunnel manager\PeerManager.exe
      FirewallRules: [{F5829BC3-B671-42AC-9CF7-ADDDDE0F9E8E}] => (Allow) C:\Program Files\BlackBerry\BlackBerry Blend\desktopinvokeproxy.exe
      FirewallRules: [{69141588-4851-4435-838C-85CA607FE5E2}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
      FirewallRules: [{D9E91064-E854-497A-B27A-643E1A229185}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
      FirewallRules: [{64EE43E2-DF1E-489B-A859-CD6AF7E2980D}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
      FirewallRules: [{F45DDA6C-8320-4442-9938-2A59F2D40AAA}] => (Allow) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
      FirewallRules: [{BB7381B1-19EE-4101-94C6-6AB7DF9B9939}] => (Allow) C:\Users\Master\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{C93F6E75-2D44-493B-A4E6-3ED78D3F34DF}] => (Allow) C:\Users\Master\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{25229D14-411D-45FB-9972-EE45FE54A050}] => (Allow) C:\Users\Master\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{6FD8DE66-C047-4E95-BA1B-B2BE8C85E877}] => (Allow) C:\Users\Master\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{A1E6BD28-5639-4B8E-B9B8-E9A1DDBC43F7}] => (Allow) C:\Users\Master\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{44F6623A-6FE4-481F-A680-E9A21AC39CAF}] => (Allow) C:\Users\Master\AppData\Roaming\uTorrent\uTorrent.exe
      FirewallRules: [{A9F39F23-2E4C-4716-8CAA-BBBEB475C65E}] => (Allow) C:\Users\Master\AppData\Roaming\ACEStream\engine\ace_engine.exe
      FirewallRules: [{8C9D2EC8-397D-4DB8-90BC-7242277828F6}] => (Allow) C:\Users\Master\AppData\Roaming\ACEStream\engine\ace_engine.exe
      FirewallRules: [{828F9914-110E-4CFC-9616-3F8FED59A7A0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
      FirewallRules: [{C6743E48-29BB-4487-9C96-B92DBDBE5CF9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
      FirewallRules: [{A86553FE-C7BE-4754-B804-AC1F5AA964CA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
      FirewallRules: [{5406797E-7086-444D-954D-D8601EFF5354}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
      FirewallRules: [{EB29558F-5E8B-4E6E-982C-7A2E01E34A0D}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
      FirewallRules: [{7022C810-3F0C-4A88-B53F-DFEAFE24FD9D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{1E21ED3E-B330-4B0B-A372-FDCBB52D48C8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{1C27046D-67D3-4D29-9B1C-E6B777EF3BB4}] => (Allow) C:\Users\Master\AppData\Local\Microsoft\OneDrive\OneDrive.exe
      FirewallRules: [{BF919253-FA8C-46FA-9D66-7B2904EAF0E1}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
      FirewallRules: [{71BEB62F-F2ED-4C3F-B99B-B587D9D9C5B5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
      FirewallRules: [{8AF36B4C-ACC7-485D-8F78-59B74869B75F}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
      FirewallRules: [{4CD4202B-43D5-40CC-ADEE-3A41AFC5D35F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
      FirewallRules: [{CC4BFB29-5EDF-4326-B90E-6E88F3975A06}] => (Allow) C:\Program Files\Opera\45.0.2552.881\opera.exe
      FirewallRules: [{FB374DC6-F98D-48E4-AA44-AE08E5674C5E}] => (Allow) C:\Program Files\Vuze\Azureus.exe
      FirewallRules: [{97A6F31E-BF3D-469C-AD7B-6E05F76AACC1}] => (Allow) C:\Program Files\Vuze\Azureus.exe
      FirewallRules: [{23A6B4B1-2E50-4481-A7FA-E57AD397199B}] => (Allow) C:\Program Files\Opera\45.0.2552.888\opera.exe

      ==================== Restore Points =========================

      25-05-2017 18:44:24 Punto de control programado
      27-05-2017 12:52:15 Removed SpyHunter
      27-05-2017 13:33:35 Instalación del paquete de controladores de dispositivo: Google, Inc. Android Phone
      27-05-2017 14:14:24 Instalación del paquete de controladores de dispositivo: USB Devices Controladoras de bus serie universal
      27-05-2017 14:41:53 Instalación del paquete de controladores de dispositivo: Google, Inc. Android Phone

      ==================== Faulty Device Manager Devices =============


      ==================== Event log errors: =========================

      Application errors:
      ==================
      Error: (06/02/2017 12:07:39 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: AUDIODG.EXE, versión: 6.1.7601.17514, marca de tiempo: 0x4ce7a278
      Nombre del módulo con errores: audioeng.dll, versión: 6.1.7600.16385, marca de tiempo: 0x4a5bd97c
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x00047393
      Id. del proceso con errores: 0xa1c
      Hora de inicio de la aplicación con errores: 0x01d2dbb8b5414230
      Ruta de acceso de la aplicación con errores: C:\Windows\system32\AUDIODG.EXE
      Ruta de acceso del módulo con errores: C:\Windows\System32\audioeng.dll
      Id. del informe: fac80b5a-47b5-11e7-ac05-0200e5e78501

      Error: (06/02/2017 10:38:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

      Error: (06/02/2017 10:36:38 AM) (Source: Winlogon) (EventID: 4103) (User: )
      Description: Error de activación de la licencia de Windows. Error 0x00000000.

      Error: (06/02/2017 10:36:38 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      0x800401F9

      Error: (06/01/2017 05:37:30 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: chrome.exe, versión: 58.0.3029.110, marca de tiempo: 0x59114d59
      Nombre del módulo con errores: chrome.dll, versión: 58.0.3029.110, marca de tiempo: 0x59114723
      Código de excepción: 0xc0000005
      Desplazamiento de errores: 0x00a5c1d9
      Id. del proceso con errores: 0x18c
      Hora de inicio de la aplicación con errores: 0x01d2db275cae12e4
      Ruta de acceso de la aplicación con errores: C:\Program Files\Google\Chrome\Application\chrome.exe
      Ruta de acceso del módulo con errores: C:\Program Files\Google\Chrome\Application\58.0.3029.110\chrome.dll
      Id. del informe: e4e12c3d-471a-11e7-a562-024082418601

      Error: (06/01/2017 03:18:31 PM) (Source: Application Error) (EventID: 1000) (User: )
      Description: Nombre de la aplicación con errores: firefox.exe, versión: 53.0.3.6347, marca de tiempo: 0x591d55d1
      Nombre del módulo con errores: xul.dll, versión: 53.0.3.6347, marca de tiempo: 0x591d59fb
      Código de excepción: 0x80000003
      Desplazamiento de errores: 0x007ffe99
      Id. del proceso con errores: 0xcbc
      Hora de inicio de la aplicación con errores: 0x01d2db0dc9362c1c
      Ruta de acceso de la aplicación con errores: C:\Program Files\Mozilla Firefox\firefox.exe
      Ruta de acceso del módulo con errores: C:\Program Files\Mozilla Firefox\xul.dll
      Id. del informe: 7aa45fae-4707-11e7-a562-024082418601

      Error: (06/01/2017 02:06:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.

      Error: (06/01/2017 02:05:15 PM) (Source: Winlogon) (EventID: 4103) (User: )
      Description: Error de activación de la licencia de Windows. Error 0x00000000.

      Error: (06/01/2017 02:05:15 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
      Description: Error de la activación de licencia (slui.exe) con el siguiente código:
      0x800401F9

      Error: (06/01/2017 01:51:08 PM) (Source: WinMgmt) (EventID: 10) (User: )
      Description: No se pudo reactivar el filtro de eventos con la consulta "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" en el espacio de nombres "//./root/CIMV2" por el error 0x80041003. Los eventos no se podrán entregar a través de este filtro hasta que se corrija este problema.


      System errors:
      =============
      Error: (06/02/2017 10:36:44 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: El servicio BlackBerry Link Communication Manager depende del servicio RIM MDNS, el cual no pudo iniciarse debido al siguiente error:
      No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.

      Error: (06/02/2017 10:36:19 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
      Description: Se deshabilitaron algunas características de administración de energía en estado de rendimiento del procesador debido a un problema conocido de firmware. Consulte al fabricante del equipo si hay firmware actualizado.

      Error: (06/01/2017 02:05:21 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: El servicio BlackBerry Link Communication Manager depende del servicio RIM MDNS, el cual no pudo iniciarse debido al siguiente error:
      No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.

      Error: (06/01/2017 02:04:58 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
      Description: Se deshabilitaron algunas características de administración de energía en estado de rendimiento del procesador debido a un problema conocido de firmware. Consulte al fabricante del equipo si hay firmware actualizado.

      Error: (06/01/2017 01:49:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
      Description: El servicio BlackBerry Link Communication Manager depende del servicio RIM MDNS, el cual no pudo iniciarse debido al siguiente error:
      No se puede iniciar el servicio, porque está deshabilitado o porque no tiene dispositivos habilitados asociados a él.

      Error: (06/01/2017 01:49:17 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
      Description: Se deshabilitaron algunas características de administración de energía en estado de rendimiento del procesador debido a un problema conocido de firmware. Consulte al fabricante del equipo si hay firmware actualizado.

      Error: (06/01/2017 01:49:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
      Description: El servicio Cola de impresión no pudo iniciarse debido al siguiente error:
      No se puede iniciar el servicio debido a un error en el inicio de sesión.

      Error: (06/01/2017 01:49:08 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
      Description: El servicio Spooler no se pudo iniciarse como NT AUTHORITY\SYSTEM con la contraseña configurada actualmente debido al siguiente error:
      Solicitud no compatible.


      Para asegurarse de que el servicio esté correctamente configurado, use el complemento Servicios en Microsoft Management Console (MMC).

      Error: (06/01/2017 01:48:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio Servicio de uso compartido de red del Reproductor de Windows Media terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 30000 milisegundos: Reiniciar el servicio.

      Error: (06/01/2017 01:48:15 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
      Description: El servicio Protección de software terminó inesperadamente. Esto se ha repetido 1 veces. Se realizará la siguiente acción correctora en 120000 milisegundos: Reiniciar el servicio.


      ==================== Memory info ===========================

      Processor: Intel(R) Core(TM)2 Duo CPU E7300 @ 2.66GHz
      Percentage of memory in use: 30%
      Total physical RAM: 2038.3 MB
      Available physical RAM: 1420.94 MB
      Total Virtual: 4076.61 MB
      Available Virtual: 3121.12 MB

      ==================== Drives ================================

      Drive c: (Sistema) (Fixed) (Total:146.39 GB) (Free:42.1 GB) NTFS
      Drive d: (Datos) (Fixed) (Total:86.4 GB) (Free:86.31 GB) NTFS
      Drive i: (Reservado para el sistema) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[system with boot components (obtained from drive)]
      Drive j: (Datos salvados) (Fixed) (Total:13.91 GB) (Free:3.3 GB) NTFS
      Drive k: () (Fixed) (Total:97.56 GB) (Free:6.17 GB) NTFS
      Drive l: () (Fixed) (Total:121.21 GB) (Free:1.3 GB) NTFS
      Drive m: () (Fixed) (Total:0.09 GB) (Free:0.08 GB) NTFS

      ==================== MBR & Partition Table ==================

      ========================================================
      Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 8AE1E4AE)
      Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
      Partition 3: (Not Active) - (Size=121.2 GB) - (Type=07 NTFS)
      Partition 4: (Not Active) - (Size=14 GB) - (Type=OF Extended)

      ========================================================
      Disk: 1 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 8E3CF90E)
      Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
      Partition 2: (Not Active) - (Size=146.4 GB) - (Type=07 NTFS)
      Partition 3: (Not Active) - (Size=86.4 GB) - (Type=07 NTFS)

      ==================== End of Addition.txt ============================.

    6. #6
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      17.924

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Desinstalas todo lo que tengas de Iobit


      Tu antivirus Eset no es la ultima version.Si tienes licencia, actualizalo

      Tambien denbes actualizar Malwarebytes instalando sobre la version que tienes desde el link que te deje.



      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)
      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      CHR DefaultSearchURL: Default -> hxxp://search.searchvzc.com/s?remove=remove&query={searchTerms}
      CHR Extension: (Chrome Media Router) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-14]
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhmeggicckjohfhgocjieomdmmanmocd] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
      S3 csr_bthav; system32\drivers\csrbthav.sys [X]
      
      
      
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).
      ATENCION!!!! El siguiente Script de reparación fue hecho específicamente por un miembro del staff para este usuario, si tiene un problema similar por favor abra su propio tema para recibir ayuda personalizada. Usar Scripts de otros usuarios puede causar daños a su equipo
      Lo pegas en tu próxima respuesta, comentado como va el problema
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    7. #7
      Usuario Avatar de poison1000
      Registrado
      jun 2015
      Ubicación
      colombia
      Mensajes
      8

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Cita Originalmente publicado por @Miguelgrado Ver Mensaje
      Desinstalas todo lo que tengas de Iobit


      Tu antivirus Eset no es la ultima version.Si tienes licencia, actualizalo

      Tambien denbes actualizar Malwarebytes instalando sobre la version que tienes desde el link que te deje.



      En el equipo con los demas programas cerrados:
      Inicio >>> Ejecutar >>>Escribes notepad.exe.

      Ahora copia y pega estos archivos dentro del Notepad: (Se excluye la palabra código)
      Código:
      Start
      CreateRestorePoint:
      CloseProcesses:
      
      CHR DefaultSearchURL: Default -> hxxp://search.searchvzc.com/s?remove=remove&query={searchTerms}
      CHR Extension: (Chrome Media Router) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-14]
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhmeggicckjohfhgocjieomdmmanmocd] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
      S3 csr_bthav; system32\drivers\csrbthav.sys [X]
      
      
      
      
      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      Lo guardas bajo el nombre de fixlist.txt en el escritorio <<< Esto es muy importante.<<

      Nota: Es importante que la Hta Frst.exe y fixlist.txt se encuentren en la misma ubicación (escritorio) o si no no trabajara.
      Ejecutas Frst.exe.

      Presionas el botón Fix y aguardas a que termine.
      La Herramienta guardara el reporte en tu escritorio (Fixlog.txt).

      Lo pegas en tu próxima respuesta, comentado como va el problema


      Fix result of Farbar Recovery Scan Tool (x86) Version: 15-06-2017 01
      Ran by Master (15-06-2017 20:56:11) Run:1
      Running from C:\Users\Master\Desktop
      Loaded Profiles: Master (Available Profiles: Master)
      Boot Mode: Normal

      ==============================================

      fixlist content:
      *****************
      Start
      CreateRestorePoint:
      CloseProcesses:

      CHR DefaultSearchURL: Default -> hxxp://search.searchvzc.com/s?remove=remove&query={searchTerms}
      CHR Extension: (Chrome Media Router) - C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-14]
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fhmeggicckjohfhgocjieomdmmanmocd] - hxxps://clients2.google.com/service/update2/crx
      CHR HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx
      S3 csr_bthav; system32\drivers\csrbthav.sys [X]




      HOSTS:
      REMOVEPROXY:
      EMPTYTEMP:
      CMD: netsh winsock reset
      CMD: ipconfig /renew
      CMD: ipconfig /flushdns
      CMD: bitsadmin /reset /allusers
      END
      *****************

      Restore point was successfully created.
      Processes closed successfully.
      Chrome DefaultSearchURL => removed successfully.
      C:\Users\Master\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm => moved successfully
      HKLM\System\CurrentControlSet\Services\csr_bthav => key removed successfully.
      csr_bthav => service removed successfully.
      C:\Windows\System32\Drivers\etc\hosts => moved successfully
      Hosts restored successfully.

      ========= RemoveProxy: =========

      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.
      HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => value removed successfully.
      HKU\S-1-5-21-1821953171-2937338977-2678338347-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => value removed successfully.


      ========= End of RemoveProxy: =========


      ========= netsh winsock reset =========


      El cat*logo Winsock se restableci¢ correctamente.
      Debe reiniciar el equipo para completar el restablecimiento.


      ========= End of CMD: =========


      ========= ipconfig /renew =========


      Configuraci¢n IP de Windows


      Adaptador de Ethernet Conexi¢n de *rea local:

      Sufijo DNS espec¡fico para la conexi¢n. . :
      V¡nculo: direcci¢n IPv6 local. . . : fe80::3d26:44d6:d384:a7da%11
      Direcci¢n IPv4. . . . . . . . . . . . . . : 192.168.0.9
      M*scara de subred . . . . . . . . . . . . : 255.255.255.0
      Puerta de enlace predeterminada . . . . . : 192.168.0.1

      Adaptador de t£nel isatap.{B5CFBFCE-276D-4F10-93F7-988E2D82D8E9}:

      Estado de los medios. . . . . . . . . . . : medios desconectados
      Sufijo DNS espec¡fico para la conexi¢n. . :

      ========= End of CMD: =========


      ========= ipconfig /flushdns =========


      Configuraci¢n IP de Windows

      Se vaci¢ correctamente la cach‚ de resoluci¢n de DNS.

      ========= End of CMD: =========


      ========= bitsadmin /reset /allusers =========


      BITSADMIN version 3.0 [ 7.5.7601 ]
      BITS administration utility.
      (C) Copyright 2000-2006 Microsoft Corp.

      BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
      Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.

      {C9569700-1CCD-4F5C-B775-FF2976CEF336} canceled.
      1 out of 1 jobs canceled.

      ========= End of CMD: =========


      =========== EmptyTemp: ==========

      BITS transfer queue => 8388608 B
      DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 4623932 B
      Java, Flash, Steam htmlcache => 506 B
      Windows/system/drivers => 2148304 B
      Edge => 0 B
      Chrome => 11381334 B
      Firefox => 11886150 B
      Opera => 146432 B

      Temp, IE cache, history, cookies, recent:
      Users => 0 B
      Default => 0 B
      Public => 0 B
      ProgramData => 0 B
      systemprofile => 83597 B
      LocalService => 66228 B
      NetworkService => 67508 B
      Master => 4481846 B

      RecycleBin => 0 B
      EmptyTemp: => 41.3 MB temporary data Removed.

      ================================


      The system needed a reboot.

      ==== End of Fixlog 20:56:53 ====





      Listo compañero ya hice todo y se nota la mejoria y la fluidez y ya no se me cierra repentinamente los navegadores,si note algo raro cuando ejecute uno de tus programas de limpieza creo que fue el farbar que me salio dos veces una advertencia que si habia instalado algunos server y me salio las direcciones y todo eso fue hace dias que hice ese procedimiento y se me habia olvidado decirtelo..me estarian espiando?,que consejos me darias para no volver a cometer esos errores y no estar tan infectado..o algun link de enlace donde pueda aprender a cuidarme mas de esas amanazas..


      Igual te agradezco enomermente tu colaboracion y sacarme de este apuro tan grande que me estaba fastidiando.

    8. #8
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      17.924

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Ahora segun mi primera respuesta, descargas e instalas la ultima versión de Malwarebytes, sobre la que tienes y realizas un análisis y me pegas el log
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    9. #9
      Usuario Avatar de poison1000
      Registrado
      jun 2015
      Ubicación
      colombia
      Mensajes
      8

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Cita Originalmente publicado por @Miguelgrado Ver Mensaje
      Ahora segun mi primera respuesta, descargas e instalas la ultima versión de Malwarebytes, sobre la que tienes y realizas un análisis y me pegas el log
      Listo compañero, se encontraron 2 amenzas mas y las elimine aca te pego el log:

      Malwarebytes
      www.malwarebytes.com

      -Detalles del registro-
      Fecha del análisis: 16/6/17
      Hora del análisis: 14:47
      Archivo de registro:
      Administrador: Sí

      -Información del software-
      Versión: 3.1.2.1733
      Versión de los componentes: 1.0.122
      Versión del paquete de actualización: 1.0.2165
      Licencia: Gratis

      -Información del sistema-
      SO: Windows 7 Service Pack 1
      CPU: x86
      Sistema de archivos: NTFS
      Usuario: Master-PC\Master

      -Resumen del análisis-
      Tipo de análisis: Análisis de amenazas
      Resultado: Completado
      Objetos analizados: 241796
      Amenazas detectadas: 2
      Amenazas en cuarentena: 0
      (No hay elementos maliciosos detectados)
      Tiempo transcurrido: 4 min, 30 seg

      -Opciones de análisis-
      Memoria: Activado
      Inicio: Activado
      Sistema de archivos: Activado
      Archivo: Activado
      Rootkits: Desactivado
      Heurística: Activado
      PUP: Activado
      PUM: Activado

      -Detalles del análisis-
      Proceso: 0
      (No hay elementos maliciosos detectados)

      Módulo: 0
      (No hay elementos maliciosos detectados)

      Clave del registro: 0
      (No hay elementos maliciosos detectados)

      Valor del registro: 0
      (No hay elementos maliciosos detectados)

      Datos del registro: 0
      (No hay elementos maliciosos detectados)

      Secuencia de datos: 0
      (No hay elementos maliciosos detectados)

      Carpeta: 0
      (No hay elementos maliciosos detectados)

      Archivo: 2
      RiskWare.DontStealOurSoftware, C:\WINDOWS\SYSTEM32\DRIVERS\ETC\HOSTS, Sin acciones por parte del usuario, [722], [353142],1.0.2165
      Adware.FileTour, C:\USERS\MASTER\DOWNLOADS\ALCATEL_MOBILE_UPGRADE_S_413_DOWNLOAD.ZIP, Sin acciones por parte del usuario, [245], [407602],1.0.2165

      Sector físico: 0
      (No hay elementos maliciosos detectados)


      (end)

    10. #10
      Warrior Avatar de @Miguelgrado
      Registrado
      dic 2005
      Ubicación
      Asturias-España
      Mensajes
      17.924

      Re: Alguien que me ayude se me cierra el navegador de un momento a otro..

      Segun el log que me pones, no se eliminaron


      Le diste a eliminar??

      Comprueba que esten en cuarentena y de paso comentas como va todo
      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    Página 1 de 2 12 ÚltimoÚltimo