• Registrarse
  • Iniciar sesión


  • Resultados 1 al 6 de 6

    varios Chrome 32 abiertos en el proceso

    Hola buenas, me esta funcionando lenta la compu y checkeo el administrador de tareas y me surge que hay en el proceso de la compu varios chrome 32 funcionando al mismo tiempo. Logfile of Trend ...

    1. #1
      Usuario Avatar de satanicgordo
      Registrado
      jul 2005
      Ubicación
      argentina
      Mensajes
      42

      varios Chrome 32 abiertos en el proceso

      Hola buenas, me esta funcionando lenta la compu y checkeo el administrador de tareas y me surge que hay en el proceso de la compu varios chrome 32 funcionando al mismo tiempo.


      Logfile of Trend Micro HijackThis v2.0.5
      Scan saved at 10:14:10 a.m., on 07/08/2017
      Platform: Windows 7 SP1 (WinNT 6.00.3505)
      MSIE: Internet Explorer v11.0 (11.00.9600.18739)


      Boot mode: Normal

      Running processes:
      C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe
      C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
      C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
      C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
      C:\Users\jorge\Downloads\HijackThis.exe

      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPALL/19
      R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPALL/19
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      F2 - REG:system.ini: UserInit=userinit.exe
      O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
      O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
      O2 - BHO: Windows Live Aplicación auxiliar de inicio de sesión - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office15\URLREDIR.DLL
      O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
      O4 - HKLM\..\Run: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
      O4 - HKLM\..\Run: [HP Software Update] c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
      O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" UNATTENDED
      O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe" "C:\Program Files (x86)\HP\HP UT LEDM\"
      O4 - HKLM\..\Run: [Dropbox] "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
      O4 - HKCU\..\Run: [HPAdvisorDock] C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe
      O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
      O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\jorge\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
      O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --flag-switches-begin --flag-switches-end --restore-last-session -- http://go.eset.eu/RenewService?license=EAV-0129157984&inProdCode=106&inProdLng=en-us&resellerId=0&partnerId=14&licProdCode=126&batchCode=DEA6-FWT&guireferrer=1
      O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000
      O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105
      O9 - Extra button: Agregar entrada - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
      O9 - Extra 'Tools' menuitem: &Agregar entrada en Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
      O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
      O9 - Extra 'Tools' menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
      O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
      O9 - Extra button: Complemento Hacer clic para llamar de Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
      O9 - Extra 'Tools' menuitem: Complemento Hacer clic para llamar de Lync - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
      O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
      O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
      O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
      O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
      O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
      O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
      O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
      O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
      O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
      O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
      O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Servicio de Actualización de Dropbox (dbupdate) (dbupdate) - Unknown owner - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
      O23 - Service: Servicio de Actualización de Dropbox (dbupdatem) (dbupdatem) - Unknown owner - C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
      O23 - Service: DbxSvc - Unknown owner - C:\Windows\system32\DbxSvc.exe (file missing)
      O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\UtcResources.dll,-3001 (DiagTrack) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
      O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
      O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Google Update Servicio (gupdate) (gupdate) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: Google Update Servicio (gupdatem) (gupdatem) - Unknown owner - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
      O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
      O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
      O23 - Service: HP LaserJet Professional M1210 MFP Series Receive Fax Service (HPM1210RcvFaxSrvc) - HP - C:\Program Files\HP\HP LaserJet M1210 MFP Series\ReceiveFaxUtility.exe
      O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
      O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
      O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
      O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
      O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
      O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
      O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
      O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: SACSrv - Gemalto - C:\Program Files\SafeNet\Authentication\SAC\x64\SACSRV.exe
      O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: Service KMSELDI - @ByELDI - C:\Program Files\KMSpico\Service_KMS.exe
      O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
      O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppsvc.exe,%101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
      O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
      O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
      O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
      O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
      O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
      O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
      O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
      O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
      O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

      --
      End of file - 24549 bytes

    2. #2
      Moderador
      Avatar de @MiguelRiaguel
      Registrado
      dic 2008
      Ubicación
      España
      Mensajes
      11.911

      Re: varios Chrome 32 abiertos en el proceso

      Saludos satanicgordo

      En el reporte de Hijackthis no se observa nada que pueda estar provocando lentitud en el sistema No obstante, me gustaría que pudieras realizar el siguiente procedimiento, y así analizamos el sistema con un poco más de profundidad:

      Paso 1- Vamos a descargar en TU ESCRITORIO todas las herramientas que vamos a utilizar en este procedimiento (pero no las ejecutes todavía):




      Paso 2- Ahora vamos a ejecutar las herramientas de una en una (cuando haya finalizado una, ejecutas la siguiente), y debes ejecutarlas en el mismo orden que te indico:


      AdwCleaner

      • El primer paso sería cerrar todos los programas que tengas abiertos.
      • Ejecutas Adwcleaner.exe. (Si usas Windows Vista/7 u 8 presionas clic derecho y seleccionas "Ejecutar como Administrador.")
      • A continuación, debes pulsar sobre el botón Escanear; el proceso de análisis se iniciará; esperas tranquilamente a que finalice.
      • Cuando termine, pulsas sobre el botón Limpiar.
      • Por último, te va a solicitar Reiniciar el sistema; como es evidente, debes Aceptar.
      • Ya solo queda, guardar el reporte que te aparecerá una vez que reinicies, para copiarlo y pegarlo en tu próxima respuesta.



      JRT.exe

      • Ejecutas Junkware Removal Tool (JRT.exe). (Si usas Windows Vista/7 u 8 presionas clic derecho y seleccionas "Ejecutar como Administrador.")
      • Ahora tienes que pulsar cualquier tecla para que el proceso continúe y esperas a que termine.
      • Cuando finalice, un registro (JRT.txt) se guardará en el escritorio y se abrirá automáticamente.
      • Este reporte debes copiarlo, para pegarlo también en tu próxima respuesta.



      Malwarebytes

      Es conveniente que inviertas unos minutos en leer con detalle su manual, para Configurarlo, Actualizarlo y Usarlo Correctamente.

      • Pulsa sobre Análisis y seleccionas Análisis Personalizado; a continuación pulsas sobre Configurar Análisis: seleccionas todas la unidades que tengas y pulsas sobre Analizar ahora.
      • Cuando Termine el análisis, Seleccionas "Eliminar Seleccionados".
      • Reinicias el sistema.
      • En el apartado "Historial" encontrarás el informe del MBAM, que debes copiar y pegar en tu próxima respuesta, para analizarlo.




      CCleaner

      Debes usar, sus dos opciones principales, de acuerdo a su Manual:

      • "Limpiador": para borrar cookies, temporales de internet y todos los archivos que éste te muestre como obsoletos.
      • "Registro" para limpiar todo el Registro de Windows (haciendo copia de seguridad).
      • NO necesitamos este reporte.



      Paso 3- Por último vamos a ejecutar Zoek.exe que lo debes de tener descargado en tu escritorio:

      • Deshabilita temporalmente tu Antivirus y Antispyware
      • Clic derecho a zoek.exe y selecciona Ejecutar como administrador
      • Copia el siguiente código: (No copiar la palabra "Código:")

        Código:
        createsrpoint;
        firefoxlook;
        ffdefaults;
        emptyclsid;
        torpigcheck;
        emptyfolderscheck;delete
        chromelook;
        restablecer cromo;
        chrdefaults;
        iedefaults;
        resetieproxy;
        emptyalltemp;
        filesrcm;
        autoclean;
        startupall;
        shortcutfix;
        resethosts;
      • Clic en Paste from ClipBoard.
        • Clic en Run Script
        • Espere a que termine. Si te solicita reiniciar acepta la instrucción.
      • Terminando se abrirá el reporte zoek-results.log con los resultados.


      Copia y pega el contenido de zoek-results.log en tu siguiente respuesta.



      Paso 4.-: En tu próxima respuesta, pegas los reportes de las 4 Herramientas (AdwCleaner, JRT, Malwarebytes' y Zoek) y no olvides comentar como sigue el problema.




      Saludos
      El problema de los virus es pasajero y durará un par de años / John McAfee - fundador de McAfee

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.

    3. #3
      Usuario Avatar de satanicgordo
      Registrado
      jul 2005
      Ubicación
      argentina
      Mensajes
      42

      Re: varios Chrome 32 abiertos en el proceso

      El problema me persiste. Aca pego el informe y tmb una foto




      # AdwCleaner 7.0.1.0 - Logfile created on Wed Aug 09 17:04:32 2017
      # Updated on 2017/05/08 by Malwarebytes
      # Running on Windows 7 Home Basic (X64)
      # Mode: clean
      # Support: https://www.malwarebytes.com/support

      ***** [ Services ] *****

      No malicious services deleted.

      ***** [ Folders ] *****

      Deleted: C:\ProgramData\{657095DF-DBDB-4B17-8245-B38845C97069}


      ***** [ Files ] *****

      No malicious files deleted.

      ***** [ DLL ] *****

      No malicious DLLs cleaned.

      ***** [ WMI ] *****

      No malicious WMI cleaned.

      ***** [ Shortcuts ] *****

      No malicious shortcuts cleaned.

      ***** [ Tasks ] *****

      No malicious tasks deleted.

      ***** [ Registry ] *****

      Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{B9D64D3B-BE75-4FA2-B94A-C4AE772A0146}
      Deleted: [Key] - HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
      Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
      Deleted: [Key] - HKLM\SOFTWARE\Classes\CLSID\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
      Deleted: [Key] - HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}


      ***** [ Firefox (and derivatives) ] *****

      No malicious Firefox entries deleted.

      ***** [ Chromium (and derivatives) ] *****

      No malicious Chromium entries deleted.

      *************************

      ::Tracing keys deleted
      ::Winsock settings cleared
      ::Additional Actions: 0



      *************************

      C:/AdwCleaner/AdwCleaner[S0].txt - [1459 B] - [2017/8/9 1524]


      ########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt ##########



      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Junkware Removal Tool (JRT) by Malwarebytes
      Version: 8.1.4 (07.09.2017)
      Operating System: Windows 7 Home Basic x64
      Ran by jorge (Administrator) on 09/08/2017 at 1435,65
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




      File System: 25

      Successfully deleted: C:\Program Files (x86)\GUTAA72.tmp (File)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1FVFJU83 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5UBL7T2T (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\67T3WTHD (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\COAXMJS7 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCMI9BDD (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K1IHMOK9 (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KM2X0MGO (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SE24E30M (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\1FVFJU83 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\5UBL7T2T (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\67T3WTHD (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\COAXMJS7 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JCMI9BDD (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K1IHMOK9 (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KM2X0MGO (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
      Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SE24E30M (Temporary Internet Files Folder)



      Registry: 2

      Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
      Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
      Scan was completed on 09/08/2017 at 14:17:08,27
      End of JRT log
      ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    4. #4
      Usuario Avatar de satanicgordo
      Registrado
      jul 2005
      Ubicación
      argentina
      Mensajes
      42

      Re: varios Chrome 32 abiertos en el proceso

      Zoek.exe v5.0.0.1 Updated 27-09-2015
      Tool run by jorge on 15/08/2017 at 10:19:57,22.
      Microsoft Windows 7 Home Basic 6.1.7601 Service Pack 1 x64
      Running in: Normal Mode No Internet Access Detected
      Launched: C:\Users\jorge\Downloads\zoek.exe [Scan all users] [Script inserted]

      ==== System Restore Info ======================

      15/08/2017 10:23:07 a.m. Zoek.exe System Restore Point Created Successfully.

      ==== Torpig Check ======================

      HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\DropboxCopyHook {FBC9D74C-AF55-4309-9FB2-C426E071637F} C:\Program Files (x86)\Dropbox\Client\DropboxExt64.18.0.dll
      HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} %SystemRoot%\system32\shell32.dll
      HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} %SystemRoot%\system32\ntshrui.dll


      ==== Reset Hosts File ======================

      # Copyright (c) 1993-2006 Microsoft Corp.
      #
      # This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
      #
      # This file contains the mappings of IP addresses to host names. Each
      # entry should be kept on an individual line. The IP address should
      # be placed in the first column followed by the corresponding host name.
      # The IP address and the host name should be separated by at least one
      # space.
      #
      # Additionally, comments (such as these) may be inserted on individual
      # lines or following the machine name denoted by a '#' symbol.
      #
      # For example:
      #
      # 102.54.94.97 rhino.acme.com # source server
      # 38.25.63.10 x.acme.com # x client host

      # localhost name resolution is handled within DNS itself.
      127.0.0.1 localhost
      ::1 localhost

      ==== Empty Folders Check ======================

      C:\PROGRA~2\iTunes deleted successfully
      C:\PROGRA~2\MSXML 4.0 deleted successfully
      C:\PROGRA~2\COMMON~1\AV deleted successfully
      C:\PROGRA~2\COMMON~1\SWF Studio deleted successfully
      C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully
      C:\Program Files\Common Files\AV deleted successfully
      C:\PROGRA~3\HPSSUPPLY deleted successfully
      C:\Users\jorge\AppData\Local\ESET deleted successfully

      ==== Deleting CLSID Registry Keys ======================

      HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} deleted successfully

      ==== Deleting CLSID Registry Values ======================


      ==== Deleting Services ======================


      ==== Deleting Files \ Folders ======================

      C:\PROGRA~2\iTunes not found
      C:\PROGRA~2\Windows Live SkyDrive deleted
      C:\PROGRA~2\GUMAA71.tmp deleted
      C:\Windows\SysNative\config\systemprofile\Searches deleted
      "C:\Windows\Installer\35dcb1c.msi" deleted

      ==== Files Recently Created / Modified ======================

      ====== C:\Windows ====
      ====== C:\Users\jorge\AppData\Local\Temp ====
      ====== Java Cache =====
      ====== C:\Windows\SysWOW64 =====
      2017-08-09 12:56:44 349168B740E4AE237F2187BAFBF876F0 20270080 ----a-w- C:\Windows\SysWOW64\mshtml.dll
      2017-08-09 12:56:41 F99F67E6DA10A8FD82B8DCC65395E221 4546048 ----a-w- C:\Windows\SysWOW64\jscript9.dll
      2017-08-09 12:56:41 E1A2A1C53E354D9016E68B16B86AE570 343552 ----a-w- C:\Windows\SysWOW64\msrd3x40.dll
      2017-08-09 12:56:41 94D10B11B61DB26940B4FB1B3ECFCE84 310272 ----a-w- C:\Windows\SysWOW64\msrd2x40.dll
      2017-08-09 12:56:40 D03CBC7A13DB67F83EAD4BB2B1B2C9D2 616448 ----a-w- C:\Windows\SysWOW64\msrepl40.dll
      2017-08-09 12:56:40 C508CD60FB68D39482966EDEFBD7CB43 290816 ----a-w- C:\Windows\SysWOW64\msjtes40.dll
      2017-08-09 12:56:40 94A4BD919D8D6FEAE8DAC69A1FBE7094 518144 ----a-w- C:\Windows\SysWOW64\msjetoledb40.dll
      2017-08-09 12:56:40 6D22C21DB4CB1AB451C6583289B4DA10 339968 ----a-w- C:\Windows\SysWOW64\msexcl40.dll
      2017-08-09 12:56:40 5ADEF0B67913448A7850836010F48ED9 1311744 ----a-w- C:\Windows\SysWOW64\msjet40.dll
      2017-08-09 12:56:40 48B8FD7C090A8B8EC47BF7A9AF8B954B 475648 ----a-w- C:\Windows\SysWOW64\msxbde40.dll
      2017-08-09 12:56:40 2F58C0DD4BCFE7CD9752EEDE8B08C261 240640 ----a-w- C:\Windows\SysWOW64\msltus40.dll
      2017-08-09 12:56:40 01AEB7B9C67E38E14088D108F024631C 375808 ----a-w- C:\Windows\SysWOW64\mspbde40.dll
      2017-08-09 12:56:39 FFEAED0E3BD67DA3559231F762B6E201 866816 ----a-w- C:\Windows\SysWOW64\mswdat10.dll
      2017-08-09 12:56:39 CE1226EA1F5AD462C978A5CB0219B8D9 641536 ----a-w- C:\Windows\SysWOW64\mswstr10.dll
      2017-08-09 12:56:39 811C4F2BAC3A5D283915129FD90310CF 1549824 ----a-w- C:\Windows\SysWOW64\tquery.dll
      2017-08-09 12:56:39 66CFEF9459FE5771D640BDADE2840192 83968 ----a-w- C:\Windows\SysWOW64\msjter40.dll
      2017-08-09 12:56:39 66263CEA683FE8B48B1CAA14F76BD00C 3945192 ----a-w- C:\Windows\SysWOW64\ntoskrnl.exe
      2017-08-09 12:56:39 3797C091CF381302F2D0768BE00B3F13 144896 ----a-w- C:\Windows\SysWOW64\msjint40.dll
      2017-08-09 12:56:38 C58B2B17A37F50823B040E40A29A3869 109568 ----a-w- C:\Windows\SysWOW64\t2embed.dll
      2017-08-09 12:56:38 6EBE64B2FA84F9A3A3070C79CDCF19E0 382976 ----a-w- C:\Windows\SysWOW64\wer.dll
      2017-08-09 12:56:38 5EBA5B7AA6EF34359AD7D72DA88B2C42 4001000 ----a-w- C:\Windows\SysWOW64\ntkrnlpa.exe
      2017-08-09 12:56:38 12C7702716B44C1A8ECBBD1D1C9E2DAF 1363968 ----a-w- C:\Windows\SysWOW64\Query.dll
      2017-08-09 12:56:37 4C42747B66C3760A8E39B67FB7B5B857 346320 ----a-w- C:\Windows\SysWOW64\iedkcs32.dll
      2017-08-09 12:56:37 39D49F32E3123A352D5358D5A02C7FE0 1314112 ----a-w- C:\Windows\SysWOW64\ntdll.dll
      2017-08-09 12:56:36 B257324F45308F7347434670D1AC1801 1155072 ----a-w- C:\Windows\SysWOW64\mshtmlmedia.dll
      2017-08-09 12:56:36 970B24D86AA519A66CA2A03E18D5B68B 54272 ----a-w- C:\Windows\SysWOW64\wermgr.exe
      2017-08-09 12:56:36 818AD1498668FA219A87E0C61D4D532B 342528 ----a-w- C:\Windows\SysWOW64\certcli.dll
      2017-08-09 12:56:36 51EA6BD2E56AEF9691A82C05D60D07A7 28672 ----a-w- C:\Windows\SysWOW64\werdiagcontroller.dll
      2017-08-09 12:56:36 381157DAB86868846200D31571B68A39 13663744 ----a-w- C:\Windows\SysWOW64\ieframe.dll
      2017-08-09 12:56:35 286CB03249553C97E1AB9524F2B8A2F8 2767872 ----a-w- C:\Windows\SysWOW64\wininet.dll
      2017-08-09 12:56:35 1FB9023F78BD157BBBFCDE5617AD15C3 1314816 ----a-w- C:\Windows\SysWOW64\urlmon.dll
      2017-08-09 12:56:34 F676EDEE798CD8AA2923DE0B4B36B570 2057216 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl
      2017-08-09 12:56:34 7E06B73FA38317C18F202AD9DF8A60AC 499200 ----a-w- C:\Windows\SysWOW64\vbscript.dll
      2017-08-09 12:56:34 41FF0832BDEB591B0C6FA5741A139E78 663552 ----a-w- C:\Windows\SysWOW64\jscript.dll
      2017-08-09 12:56:34 28FAAAFFB97CBB8A9E5FF25C99E6FA81 693248 ----a-w- C:\Windows\SysWOW64\msfeeds.dll
      2017-08-09 12:56:34 258E7288499A68227104B48D399B67CE 2290176 ----a-w- C:\Windows\SysWOW64\iertutil.dll
      2017-08-09 12:56:32 76ADA5EB182B45AC18A4305C7508A399 666112 ----a-w- C:\Windows\SysWOW64\rpcrt4.dll
      2017-08-09 12:56:31 B1563431B3A76525592C7B776578D14C 341504 ----a-w- C:\Windows\SysWOW64\html.iec
      2017-08-09 12:56:31 A8987A3A09DADA6878194995E8F71BBE 279040 ----a-w- C:\Windows\SysWOW64\dxtrans.dll
      2017-08-09 12:56:31 9977E74EB12B3EC7AC2D7EA2623DBB7A 710144 ----a-w- C:\Windows\SysWOW64\ieapfltr.dll
      2017-08-09 12:56:31 785A01E02587C5B53291B3910209F9AB 476160 ----a-w- C:\Windows\SysWOW64\ieui.dll
      2017-08-09 12:56:31 7773973ECFBF9BC30285B98E5DB0A9DE 1400320 ----a-w- C:\Windows\SysWOW64\mssrch.dll
      2017-08-09 12:56:31 17DB103B638EA351A145333F3EDB0C1B 230400 ----a-w- C:\Windows\SysWOW64\webcheck.dll
      2017-08-09 12:56:30 EA9A15BD7FE307B24CFECA5CB1FC3916 168960 ----a-w- C:\Windows\SysWOW64\msrating.dll
      2017-08-09 12:56:30 E91B73A7273D534A075A6EEFA6EFA261 666624 ----a-w- C:\Windows\SysWOW64\mssvp.dll
      2017-08-09 12:56:30 E8CB594B771F7F617505C3CF8802BA1D 620032 ----a-w- C:\Windows\SysWOW64\jscript9diag.dll
      2017-08-09 12:56:30 AEC448C8FF72881CD1613FCCE7A4B890 130048 ----a-w- C:\Windows\SysWOW64\occache.dll
      2017-08-09 12:56:30 5D31CF5DA9AF6BDBA892E9537F6BEE75 76288 ----a-w- C:\Windows\SysWOW64\mshtmled.dll
      2017-08-09 12:56:30 0EFA16F89ABB91374DF9CED9AF763D18 416256 ----a-w- C:\Windows\SysWOW64\dxtmsft.dll
      2017-08-09 12:56:29 FCDF968DDD066174EA955F48F824DF6D 91136 ----a-w- C:\Windows\SysWOW64\inseng.dll
      2017-08-09 12:56:29 E66F8B8D46BD3BBF7F56AE506A610BD2 554496 ----a-w- C:\Windows\SysWOW64\kerberos.dll
      2017-08-09 12:56:29 E41DA6882A28407D17A5C33A9C372B4F 115712 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe
      2017-08-09 12:56:29 AF5082A164B72E7DDE9086662A2962C9 47104 ----a-w- C:\Windows\SysWOW64\jsproxy.dll
      2017-08-09 12:56:29 A254B0397DD70715626DF268A19D4E50 96768 ----a-w- C:\Windows\SysWOW64\sspicli.dll
      2017-08-09 12:56:29 8B53B1777FD084BE5BF04AE7BC758F9D 47616 ----a-w- C:\Windows\SysWOW64\ieetwproxystub.dll
      2017-08-09 12:56:29 897FC34A70758C7C08DC1D86AB2C57C1 64000 ----a-w- C:\Windows\SysWOW64\MshtmlDac.dll
      2017-08-09 12:56:29 4273F6C7F44A96579A84F39EBB6305DD 60416 ----a-w- C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
      2017-08-09 12:56:29 358AD9A5521B01FA49090CF90C0B971E 261120 ----a-w- C:\Windows\SysWOW64\msv1_0.dll
      2017-08-09 12:56:29 265733569DFF692173954298E600D53D 337408 ----a-w- C:\Windows\SysWOW64\mssph.dll
      2017-08-09 12:56:29 06C7D0C00327A2D0D4706319BD087669 73216 ----a-w- C:\Windows\SysWOW64\tdc.ocx
      2017-08-09 12:56:28 BFC95F2E43249ABAC243D29E03C25CB2 197120 ----a-w- C:\Windows\SysWOW64\mssphtb.dll
      2017-08-09 12:56:28 B7BBEEB2723F347E477F1FFBFC0B04A7 141312 ----a-w- C:\Windows\SysWOW64\rpchttp.dll
      2017-08-09 12:56:28 7309C814CCB0E74A10D76B162FECA354 644096 ----a-w- C:\Windows\SysWOW64\advapi32.dll
      2017-08-09 12:56:28 61577DCC892EA4B8FC769815B0B82967 30720 ----a-w- C:\Windows\SysWOW64\iernonce.dll
      2017-08-09 12:56:28 611A0A82ECC46DF162527BEED8FD47A7 223232 ----a-w- C:\Windows\SysWOW64\ncrypt.dll
      2017-08-09 12:56:28 50584C2E1A8C2BD781AEC7F707AFBA0B 172032 ----a-w- C:\Windows\SysWOW64\wdigest.dll
      2017-08-09 12:56:28 4328A0BD2E6D939C8508AABEE1A459C1 275456 ----a-w- C:\Windows\SysWOW64\KernelBase.dll
      2017-08-09 12:56:28 40F2E392523950EBD0B009BC9D995198 104448 ----a-w- C:\Windows\SysWOW64\mssitlb.dll
      2017-08-09 12:56:28 336839CDDF24240E6465430FA7FD71D1 62464 ----a-w- C:\Windows\SysWOW64\iesetup.dll
      2017-08-09 12:56:28 1B5078DF0AB4FFBAEE77ED3D52999395 254464 ----a-w- C:\Windows\SysWOW64\schannel.dll
      2017-08-09 12:56:27 FD1EECC19E3384CDF3AFCCD777066C67 164352 ----a-w- C:\Windows\SysWOW64\SearchProtocolHost.exe
      2017-08-09 12:56:27 D8269F5CE6DDF371A27A190B4B467911 50688 ----a-w- C:\Windows\SysWOW64\appidapi.dll
      2017-08-09 12:56:27 D25C845BA47034B856EC4960A335AEDB 9728 ----a-w- C:\Windows\SysWOW64\msshooks.dll
      2017-08-09 12:56:27 CF2F0C93A4F37D0C41740F1FB9397C62 86528 ----a-w- C:\Windows\SysWOW64\SearchFilterHost.exe
      2017-08-09 12:56:27 C0B22F472B9FB21DF8116C1D91D0D6E1 22016 ----a-w- C:\Windows\SysWOW64\secur32.dll
      2017-08-09 12:56:27 ABC1079C5C9615CAB56DF81F4623DD0D 34816 ----a-w- C:\Windows\SysWOW64\mssprxy.dll
      2017-08-09 12:56:27 95F918248DA87039EC8545B6E9056EBF 14336 ----a-w- C:\Windows\SysWOW64\ntvdm64.dll
      2017-08-09 12:56:27 81FF2624E704DBCFAFB43B77F794D854 59392 ----a-w- C:\Windows\SysWOW64\msscntrs.dll
      2017-08-09 12:56:27 73ED768F7F40A9903D3C00721199FC37 43008 ----a-w- C:\Windows\SysWOW64\srclient.dll
      2017-08-09 12:56:27 718B72F26F5B335BAF2F4BEB613C1C26 82944 ----a-w- C:\Windows\SysWOW64\bcrypt.dll
      2017-08-09 12:56:27 6F67395D29B4B0D888A23206B16D363C 427520 ----a-w- C:\Windows\SysWOW64\SearchIndexer.exe
      2017-08-09 12:56:27 6EC0AD76566971D0EDC9AED07C638A6A 17408 ----a-w- C:\Windows\SysWOW64\credssp.dll
      2017-08-09 12:56:27 57E9E4315DF5A62BC1816F8EF912F16D 36352 ----a-w- C:\Windows\SysWOW64\cryptbase.dll
      2017-08-09 12:56:27 4249B22BB56A24B74F6C6CA1DF6DC460 5120 ----a-w- C:\Windows\SysWOW64\wow32.dll
      2017-08-09 12:56:27 1B629C8A1DFF0E454C0C4889747F9B64 65536 ----a-w- C:\Windows\SysWOW64\TSpkg.dll
      2017-08-09 12:56:27 14F862F00579F19AD918AC3D366B11FE 50176 ----a-w- C:\Windows\SysWOW64\auditpol.exe
      2017-08-09 12:56:27 0BFF1186242B1DFF985CE2498BA8DD6C 1114112 ----a-w- C:\Windows\SysWOW64\kernel32.dll
      2017-08-09 12:56:26 BC678993C8A739FC439957507E6F3275 7680 ----a-w- C:\Windows\SysWOW64\instnm.exe
      2017-08-09 12:56:26 780E9ECA019F112C724F180923A0ECDE 2048 ----a-w- C:\Windows\SysWOW64\user.exe
      2017-08-09 12:56:26 41DE40F5B9E183FDF70D59AF51761435 2724864 ----a-w- C:\Windows\SysWOW64\mshtml.tlb
      2017-08-09 12:56:26 4036D9903B1CF17350249B930B80F58C 25600 ----a-w- C:\Windows\SysWOW64\setup16.exe
      2017-08-09 12:56:26 0C57D80037162C1146FB9AF5B56A2DCA 6656 ----a-w- C:\Windows\SysWOW64\apisetschema.dll
      2017-08-09 12:56:25 ADF1664506454B8FA4F1369D81848FFA 146432 ----a-w- C:\Windows\SysWOW64\msaudite.dll
      2017-08-09 12:56:25 8C029A0188A7D93A9E81ED525E43757C 690688 ----a-w- C:\Windows\SysWOW64\adtschema.dll
      2017-08-09 12:56:24 FF8B6558BB9CD8890253FFC01E57E3EC 282624 ----a-w- C:\Windows\SysWOW64\mstext40.dll
      2017-08-09 12:56:24 9C072E9ADBC4C92143953F1E2D222DFC 60416 ----a-w- C:\Windows\SysWOW64\msobjs.dll
      2017-08-09 12:56:24 633CD8A938AB8C6B2D0166A4A55A225F 409600 ----a-w- C:\Windows\SysWOW64\msexch40.dll
      ====== C:\Windows\SysWOW64\drivers =====
      ====== C:\Windows\Sysnative =====
      2017-08-10 17:03:40 CF8737B7CFB2FE5C557DC7893BAC888F 49992 ----a-w- C:\Windows\Sysnative\DbxSvc.exe
      2017-08-09 12:56:45 54772034E30550C213BC7E1C7D5F0D47 25733632 ----a-w- C:\Windows\Sysnative\mshtml.dll
      2017-08-09 12:56:43 A43E833C48BDAB8EE01A70B8339F8545 15254016 ----a-w- C:\Windows\Sysnative\ieframe.dll
      2017-08-09 12:56:42 9D03C39828AF563D1FB950660720FC6A 5981184 ----a-w- C:\Windows\Sysnative\jscript9.dll
      2017-08-09 12:56:40 B0469617577F749FABBA53206D418F9B 3224064 ----a-w- C:\Windows\Sysnative\win32k.sys
      2017-08-09 12:56:40 44229026F0B4DED033280CCBCA72465B 5547752 ----a-w- C:\Windows\Sysnative\ntoskrnl.exe
      2017-08-09 12:56:39 7CC4642FF5A7015EB2E7151B6232BCEA 2058240 ----a-w- C:\Windows\Sysnative\Query.dll
      2017-08-09 12:56:39 79F39C3083B6F6BC8D8C57B097EBE263 2319872 ----a-w- C:\Windows\Sysnative\tquery.dll
      2017-08-09 12:56:39 6F14CB391767A3BB45CE9AA5E36B8B15 486400 ----a-w- C:\Windows\Sysnative\wer.dll
      2017-08-09 12:56:38 3963FEC1892368DD500E6ED1F5C286CE 370920 ----a-w- C:\Windows\Sysnative\clfs.sys
      2017-08-09 12:56:37 ECE68CA42DE7DF8A47D769A5EB4760B1 149504 ----a-w- C:\Windows\Sysnative\t2embed.dll
      2017-08-09 12:56:37 EBA5E233C259FA66AD45306E625D9D0C 706792 ----a-w- C:\Windows\Sysnative\winload.efi
      2017-08-09 12:56:37 D88650D10D013A382D7BFD2D55CE997E 968704 ----a-w- C:\Windows\Sysnative\MsSpellCheckingFacility.exe
      2017-08-09 12:56:37 825F5823B722AB36DEF18593400D2717 394448 ----a-w- C:\Windows\Sysnative\iedkcs32.dll
      2017-08-09 12:56:37 40D95365E0C28604DA31887F3163ED29 1732864 ----a-w- C:\Windows\Sysnative\ntdll.dll
      2017-08-09 12:56:37 1580294CDD73CBD2D61BCD6C236168FC 631176 ----a-w- C:\Windows\Sysnative\winresume.efi
      2017-08-09 12:56:36 C5BFF9FFD551AA6BB5E40E22BBDDC0B4 1359360 ----a-w- C:\Windows\Sysnative\mshtmlmedia.dll
      2017-08-09 12:56:36 94678F9303770C21B29EC5B308361CC6 3240960 ----a-w- C:\Windows\Sysnative\wininet.dll
      2017-08-09 12:56:36 89765E5A616A11A0B78E015F88563D60 50688 ----a-w- C:\Windows\Sysnative\wermgr.exe
      2017-08-09 12:56:36 78DDC2718FC4C7E7FCDC01F3E4B38706 1545728 ----a-w- C:\Windows\Sysnative\urlmon.dll
      2017-08-09 12:56:36 54C9BCE6173B2D094C70AB8A6778C5CF 463872 ----a-w- C:\Windows\Sysnative\certcli.dll
      2017-08-09 12:56:36 4BB23FCE63D49211BB520D368E1FDD3F 34304 ----a-w- C:\Windows\Sysnative\werdiagcontroller.dll
      2017-08-09 12:56:35 A3DF52F9721B32F44FDB4C12D9E48FE8 806912 ----a-w- C:\Windows\Sysnative\msfeeds.dll
      2017-08-09 12:56:35 6F09781806F2B250C389A183B2527803 576512 ----a-w- C:\Windows\Sysnative\vbscript.dll
      2017-08-09 12:56:35 6B52BEEA50CD50F50DD8AF90485E325B 817664 ----a-w- C:\Windows\Sysnative\jscript.dll
      2017-08-09 12:56:35 21EA574CF2F24FBA5527240B7898AF92 2899456 ----a-w- C:\Windows\Sysnative\iertutil.dll
      2017-08-09 12:56:34 D26E8B1FA47D4CEE05FE23917F384B3B 417792 ----a-w- C:\Windows\Sysnative\html.iec
      2017-08-09 12:56:34 CD2DA128CB0082921CB5E900D93B774C 2132992 ----a-w- C:\Windows\Sysnative\inetcpl.cpl
      2017-08-09 12:56:34 963A715441A4B2D276A9D90B685B9E81 1212928 ----a-w- C:\Windows\Sysnative\rpcrt4.dll
      2017-08-09 12:56:33 A0742CEBBCDC9001AF9E2234047C3EE4 615936 ----a-w- C:\Windows\Sysnative\ieui.dll
      2017-08-09 12:56:33 9857A810862E54808164B8C348BB4184 2222080 ----a-w- C:\Windows\Sysnative\mssrch.dll
      2017-08-09 12:56:33 5B0F315701C6526A9BC16D290ADFCD96 489984 ----a-w- C:\Windows\Sysnative\dxtmsft.dll
      2017-08-09 12:56:33 5380B0A846E7BEF770FCD0733CC85C5E 800768 ----a-w- C:\Windows\Sysnative\ieapfltr.dll
      2017-08-09 12:56:32 FA3AEC715A90756E9B45270EA30738EC 315392 ----a-w- C:\Windows\Sysnative\dxtrans.dll
      2017-08-09 12:56:32 D4C497DE5F8CCCB8C896599EA756972D 778240 ----a-w- C:\Windows\Sysnative\mssvp.dll
      2017-08-09 12:56:32 AF48569C9EDA35D0A53D0F4CD83099D7 1460736 ----a-w- C:\Windows\Sysnative\lsasrv.dll
      2017-08-09 12:56:32 71C61F5D5761F8E8C79DF4AC3F524E33 199680 ----a-w- C:\Windows\Sysnative\msrating.dll
      2017-08-09 12:56:32 2985C21ACAA4D3E0B1C78D07D375EF88 262144 ----a-w- C:\Windows\Sysnative\webcheck.dll
      2017-08-09 12:56:32 1C794DC9C2609F998A5815CF46C3EDCB 491520 ----a-w- C:\Windows\Sysnative\mssph.dll
      2017-08-09 12:56:32 0473D95F316DAECACA4CF5CC1A1B50F4 92160 ----a-w- C:\Windows\Sysnative\mshtmled.dll
      2017-08-09 12:56:31 FB09D73A59BEBEDAC6A228263DAA7320 731648 ----a-w- C:\Windows\Sysnative\kerberos.dll
      2017-08-09 12:56:31 506525439D1FF85511D776470546BA54 54784 ----a-w- C:\Windows\Sysnative\jsproxy.dll
      2017-08-09 12:56:31 4A1147F1F2602A2800CA541493E9EA70 152064 ----a-w- C:\Windows\Sysnative\occache.dll
      2017-08-09 12:56:31 34AEDE49E62A7A9FAD5AAC035772DA7D 814080 ----a-w- C:\Windows\Sysnative\jscript9diag.dll
      2017-08-09 12:56:30 F372CD49B3E8AF25F7B7BFF23685B3DA 880640 ----a-w- C:\Windows\Sysnative\advapi32.dll
      2017-08-09 12:56:30 CEDCA737D4325CC87DED52FC9AB7D450 345600 ----a-w- C:\Windows\Sysnative\schannel.dll
      2017-08-09 12:56:30 BEF4F8FFD5F98F18A006D13AB1D5239A 99840 ----a-w- C:\Windows\Sysnative\mssprxy.dll
      2017-08-09 12:56:30 AFD5320161B10C6EF2058DA7FB0A814D 144384 ----a-w- C:\Windows\Sysnative\ieUnatt.exe
      2017-08-09 12:56:30 75E49FDFB22014CC8D2DD52B8C7306F4 107520 ----a-w- C:\Windows\Sysnative\inseng.dll
      2017-08-09 12:56:30 6BCE8F6046069FB1637F3BE297AE2E02 115200 ----a-w- C:\Windows\Sysnative\mssitlb.dll
      2017-08-09 12:56:30 69818052454689AFDEFE3116906CFED4 88064 ----a-w- C:\Windows\Sysnative\MshtmlDac.dll
      2017-08-09 12:56:30 3EF01C3C5BB7466A3D5E66A787402369 112640 ----a-w- C:\Windows\Sysnative\smss.exe
      2017-08-09 12:56:30 215FD084A006EEEFED5702DFA2545E8F 288256 ----a-w- C:\Windows\Sysnative\mssphtb.dll
      2017-08-09 12:56:30 13E9F02A21159F0668EA9D53A38B1F7F 1163264 ----a-w- C:\Windows\Sysnative\kernel32.dll
      2017-08-09 12:56:30 06CA6A1C55060220CE3B02B4ECD71B41 87552 ----a-w- C:\Windows\Sysnative\tdc.ocx
      2017-08-09 12:56:29 EC8B0C251BB63EA1DECDA30C295B42E3 86528 ----a-w- C:\Windows\Sysnative\TSpkg.dll
      2017-08-09 12:56:29 EB4810B97E8E88CE7BBD47A719F9D6E8 77824 ----a-w- C:\Windows\Sysnative\JavaScriptCollectionAgent.dll
      2017-08-09 12:56:29 D5460CC2B8B7F54F0BD36619762713A3 135680 ----a-w- C:\Windows\Sysnative\sspicli.dll
      2017-08-09 12:56:29 C9724F06E2143905813A4D8F2E24A158 66560 ----a-w- C:\Windows\Sysnative\iesetup.dll
      2017-08-09 12:56:29 C4394C549A49637A6FA1AC4D98CB1C04 312320 ----a-w- C:\Windows\Sysnative\ncrypt.dll
      2017-08-09 12:56:29 B1305D9F6A602B329DD01394562C5AAB 48640 ----a-w- C:\Windows\Sysnative\ieetwproxystub.dll
      2017-08-09 12:56:29 AAE02F57CBBA104FDE2EF2A8069DD7C6 249856 ----a-w- C:\Windows\Sysnative\SearchProtocolHost.exe
      2017-08-09 12:56:29 8925F0181AB6A43A4AF6420211FDEC47 215552 ----a-w- C:\Windows\Sysnative\winsrv.dll
      2017-08-09 12:56:29 68808C3D1E13B2673F7952238BCF0F84 316928 ----a-w- C:\Windows\Sysnative\msv1_0.dll
      2017-08-09 12:56:29 46E5D8AB11C41161CBA85DFC95B1D538 116224 ----a-w- C:\Windows\Sysnative\ieetwcollector.exe
      2017-08-09 12:56:29 0A7FD676E580A565D886C4FA79807878 725504 ----a-w- C:\Windows\Sysnative\ie4uinit.exe
      2017-08-09 12:56:29 09BC1A3F61E8231BA387CD1B6F9E0631 210432 ----a-w- C:\Windows\Sysnative\wdigest.dll
      2017-08-09 12:56:28 F9576F50F2D1B4B79108DF635F1A8779 113664 ----a-w- C:\Windows\Sysnative\SearchFilterHost.exe
      2017-08-09 12:56:28 D91155C3ACF35DCC6547B93CAD096D07 34304 ----a-w- C:\Windows\Sysnative\iernonce.dll
      2017-08-09 12:56:28 CE4415C473C904A2034D6410AF59351C 190464 ----a-w- C:\Windows\Sysnative\rpchttp.dll
      2017-08-09 12:56:28 CA6CD2CE6D3666F5DEDCF02FEA57FA9B 43520 ----a-w- C:\Windows\Sysnative\cryptbase.dll
      2017-08-09 12:56:28 B179EF0BEA4AD1E0B6CBC4595B0F7DCF 338432 ----a-w- C:\Windows\Sysnative\conhost.exe
      2017-08-09 12:56:28 A8BB6FD9F2E885BFFBA116FACBB68597 123904 ----a-w- C:\Windows\Sysnative\bcrypt.dll
      2017-08-09 12:56:28 A7C8BBFF19F5AF42746BB215C8E83613 591872 ----a-w- C:\Windows\Sysnative\SearchIndexer.exe
      2017-08-09 12:56:28 9D0A14D2007E4223BDF6E91C51376060 75264 ----a-w- C:\Windows\Sysnative\msscntrs.dll
      2017-08-09 12:56:28 7C1E5759585E3238BC009634025BDCD7 362496 ----a-w- C:\Windows\Sysnative\wow64win.dll
      2017-08-09 12:56:28 785D1C1C0C8FBB6CFAD60165A7887B3A 14336 ----a-w- C:\Windows\Sysnative\msshooks.dll
      2017-08-09 12:56:28 61FF4456A65C5CF4CFF918F5C484F0A0 30720 ----a-w- C:\Windows\Sysnative\lsass.exe
      2017-08-09 12:56:28 4B3BB975CCF3B377428C4D24A184C694 419840 ----a-w- C:\Windows\Sysnative\KernelBase.dll
      2017-08-09 12:56:28 3B33316EA62B7D7E37EC9CAED3D9EC12 503808 ----a-w- C:\Windows\Sysnative\srcore.dll
      2017-08-09 12:56:28 34D9960AC151982A238076984C976C11 28672 ----a-w- C:\Windows\Sysnative\sspisrv.dll
      2017-08-09 12:56:27 F330239BEC86671B27037142ED92CE35 148480 ----a-w- C:\Windows\Sysnative\appidpolicyconverter.exe
      2017-08-09 12:56:27 DF6FEAC0B3BF131EA16094A4FAA6A9EA 22016 ----a-w- C:\Windows\Sysnative\credssp.dll
      2017-08-09 12:56:27 A780A5236665173DBEA1F2B4ACC6FC06 64000 ----a-w- C:\Windows\Sysnative\auditpol.exe
      2017-08-09 12:56:27 8126AF2E98A9AAD17E6884C7430B170C 44032 ----a-w- C:\Windows\Sysnative\csrsrv.dll
      2017-08-09 12:56:27 593ECFFD8E3E2D442F69DAD3F2F73D20 17920 ----a-w- C:\Windows\Sysnative\appidcertstorecheck.exe
      2017-08-09 12:56:27 56CDF84E681464371CF7385E97406113 34816 ----a-w- C:\Windows\Sysnative\appidsvc.dll
      2017-08-09 12:56:27 53F445AE8F35C3D9AB92809A784C328F 296960 ----a-w- C:\Windows\Sysnative\rstrui.exe
      2017-08-09 12:56:27 45091FCDDDCB127A9C0A697389DFC9AC 59904 ----a-w- C:\Windows\Sysnative\appidapi.dll
      2017-08-09 12:56:27 3E080BF8991F312D791796F6AF6D90EA 16384 ----a-w- C:\Windows\Sysnative\ntvdm64.dll
      2017-08-09 12:56:27 21F87089D3839317DEB3A3EA9B293909 243712 ----a-w- C:\Windows\Sysnative\wow64.dll
      2017-08-09 12:56:27 1FA993FCE4392B259AA9E3353E68859D 13312 ----a-w- C:\Windows\Sysnative\wow64cpu.dll
      2017-08-09 12:56:27 1F2AD9C9BA47DC56E100E049A5B62BEC 50176 ----a-w- C:\Windows\Sysnative\srclient.dll
      2017-08-09 12:56:27 1BE26CD43A3F20AAE0F03318BC629C9B 63488 ----a-w- C:\Windows\Sysnative\setbcdlocale.dll
      2017-08-09 12:56:27 1064F2AE8D371D68F833EC840C913ED9 28160 ----a-w- C:\Windows\Sysnative\secur32.dll
      2017-08-09 12:56:26 832A429950375DC7165AA3988252F5DF 6656 ----a-w- C:\Windows\Sysnative\apisetschema.dll
      2017-08-09 12:56:25 FDCEA8D188C684C6AC254E52AFF3F018 690688 ----a-w- C:\Windows\Sysnative\adtschema.dll
      2017-08-09 12:56:25 E7852B2448F09910C297FE11B0C234FE 4096 ----a-w- C:\Windows\Sysnative\ieetwcollectorres.dll
      2017-08-09 12:56:25 D0113DFE575E05BAC434DDE16E1DA71C 146432 ----a-w- C:\Windows\Sysnative\msaudite.dll
      2017-08-09 12:56:25 714EDEF162017F555F03B9C19F8E51FF 2724864 ----a-w- C:\Windows\Sysnative\mshtml.tlb
      2017-08-09 12:56:24 6D53A7495F6B8FB15221CB09777F9F49 60416 ----a-w- C:\Windows\Sysnative\msobjs.dll
      ====== C:\Windows\Sysnative\drivers =====
      2017-08-10 17:03:40 FCC89FED34A5FD03B27A2B577A40ACF8 45640 ----a-w- C:\Windows\Sysnative\drivers\dbx-stable.sys
      2017-08-10 17:03:40 FCC89FED34A5FD03B27A2B577A40ACF8 45640 ----a-w- C:\Windows\Sysnative\drivers\dbx-canary.sys
      2017-08-10 17:03:40 728BE4B36BA453779AEC6459DDDB320B 45672 ----a-w- C:\Windows\Sysnative\drivers\dbx-dev.sys
      2017-08-09 17:31:34 0C847B9BD2D1F1E97037F8C3DA6D5A1B 188352 ----a-w- C:\Windows\Sysnative\drivers\MBAMChameleon.sys
      2017-08-09 17:31:26 19956478146DC7884812C24B74D7132E 101784 ----a-w- C:\Windows\Sysnative\drivers\farflt.sys
      2017-08-09 17:31:25 6460084E1086CA8523C00C95F280F43B 84256 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys
      2017-08-09 17:31:16 149E252142950594695178971748D056 45472 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys
      2017-08-09 17:31:06 C3549BE8C1FE4ECBEE21DAD3378F6CD0 253856 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys
      2017-08-09 17:30:48 5C9CA030C451CB3553DB9094C68EE6E9 77376 ----a-w- C:\Windows\Sysnative\drivers\mbae64.sys
      2017-08-09 12:56:38 85C5468BC395819AE2A0C747334BA14C 363752 ----a-w- C:\Windows\Sysnative\drivers\volmgrx.sys
      2017-08-09 12:56:38 4DD986720F7CB7A8A5D1226793097B9A 117248 ----a-w- C:\Windows\Sysnative\drivers\tdx.sys
      2017-08-09 12:56:37 EF5F0751E656C74E550E46B047FBEA57 154856 ----a-w- C:\Windows\Sysnative\drivers\ksecpkg.sys
      2017-08-09 12:56:37 B6839909DDC1DDA53A5470DA3DE638A4 95464 ----a-w- C:\Windows\Sysnative\drivers\ksecdd.sys
      2017-08-09 12:56:31 0CAFC684CABD24D089A53467CAF5C7BB 159744 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb.sys
      2017-08-09 12:56:30 B9361F539BAAC1D362808157EAE0BA3B 291328 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb10.sys
      2017-08-09 12:56:28 A77260AE4B9E7B6C11675FB907D27AE8 129536 ----a-w- C:\Windows\Sysnative\drivers\mrxsmb20.sys
      2017-08-09 12:56:27 F5206C19AAD6BA60360888E9A20396C7 62464 ----a-w- C:\Windows\Sysnative\drivers\appid.sys
      ====== C:\Windows\Tasks ======
      ====== C:\Windows\Temp ======
      ======= C:\Program Files =====
      ======= C:\PROGRA~2 =====
      ======= C: =====
      ====== C:\Users\jorge\AppData\Roaming ======
      2017-08-07 14:06:49 -------- d-----w- C:\Users\jorge\AppData\Local\Eric_Zhang
      2017-07-31 15:55:51 4759C046275B60BA5E7B864ED8B8FD36 2130912 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat
      ====== C:\Users\jorge ======
      2017-08-11 12:35:32 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
      2017-08-09 15:01:01 AD936E751C87A6D36CAC5BB1A0897D6D 8185288 ----a-w- C:\Users\jorge\Downloads\adwcleaner_7.0.1.0.exe
      2017-08-09 12:24:37 4D4F7F80A542A93D0D3C822153E2C254 9747512 ----a-w- C:\Users\jorge\Downloads\ccsetup532.exe
      2017-08-09 12:23:14 9CB5C0D7BA7ABC8C73AF647B241845EB 65033984 ----a-w- C:\Users\jorge\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.160-1.0.2251.exe
      2017-08-09 12:22:21 E40542C4CC75E658A4615BFEFB308570 1790024 ----a-w- C:\Users\jorge\Downloads\JRT.exe
      2017-08-09 12:21:50 C651234AE25E4843105CBC50FE2BA124 8162248 ----a-w- C:\Users\jorge\Downloads\AdwCleaner.exe
      2017-08-03 12:56:32 28477FE8D43D4D357B4AC15BCF28861B 549504 ----a-w- C:\Users\jorge\Downloads\ESETPoweliksCleaner.exe
      2017-08-02 12:23:04 46647F4BA00F0C2B90B35B5C222A7AF1 6760064 ----a-w- C:\Users\jorge\Downloads\ESETOnlineScanner_ESL.exe

      ====== C: exe-files ==
      2017-08-15 13:32:46 0E10B04E731D3DFC9687C072850070CC 3947128 ----a-w- C:\Users\jorge\AppData\Local\Google\Chrome\User Data\SwReporter\20.117.1\software_reporter_tool.exe
      2017-08-11 12:34:55 D9B9AC9804727D78D783E826A8C64815 25408 ----a-w- C:\Program Files (x86)\Dropbox\Client\QtWebEngineProcess.exe
      2017-08-11 12:33:26 A61C8191FC9491ADA40AB04A83C5EB33 174152 ----a-w- C:\Program Files (x86)\Dropbox\Client\DropboxUninstaller.exe
      2017-08-11 12:33:25 F668F28BB0BE8466A2E4E8EEFF20FEA3 3487032 ----a-w- C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
      2017-08-11 12:33:25 CF84880E1716EF53DB265B275C55E452 43336 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbxsvc.exe
      2017-08-11 12:33:24 CF8737B7CFB2FE5C557DC7893BAC888F 49992 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbxsvc.exe
      2017-08-11 12:26:55 E6860218799CD7EEE9EBD254C7DC3A92 78456992 ----a-w- C:\Program Files (x86)\Dropbox\Update\Download\{CC46080E-4C33-4981-859A-BBA2F780F31E}\32.4.23\DropboxClient_32.4.23.exe
      2017-08-10 15:24:48 A013E5E9A1E8D9E36F91BF923E44AA47 2226160 ----a-w- C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      2017-08-09 12:56:38 62586CDE4EBBBB124671ACBF5E41EFAF 814288 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
      2017-08-09 12:56:37 F33075F49EFCB7020CFCA9ACE36E308C 815312 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
      2017-08-09 12:56:29 63CC32C608A441BB1F6537E5DD8C824B 492032 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
      2017-08-09 12:56:28 D705496E35BAA35E066F619E0AB6616F 221184 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
      2017-08-09 12:56:28 6A91DC09158BF204A8A036CFC01D6149 222720 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
      2017-08-09 12:56:28 0A9DBF103E73F5789B55284CA0A5707A 475648 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
      === C: other files ==
      2017-08-11 12:33:46 60AF4B7B4EFFB9E5E091BC70AC85355A 24958600 ----a-w- C:\Program Files (x86)\Dropbox\Client\python-packages.zip
      2017-08-11 12:33:25 8ABCBCBD5B649C2D4DC4342B014B2639 35432 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-dev.sys
      2017-08-11 12:33:25 0A9383A95D3FE631650567C9DFC17E03 35408 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-stable.sys
      2017-08-11 12:33:25 0A9383A95D3FE631650567C9DFC17E03 35408 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_x86\dbx-canary.sys
      2017-08-11 12:33:24 FCC89FED34A5FD03B27A2B577A40ACF8 45640 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-stable.sys
      2017-08-11 12:33:24 FCC89FED34A5FD03B27A2B577A40ACF8 45640 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-canary.sys
      2017-08-11 12:33:24 728BE4B36BA453779AEC6459DDDB320B 45672 ----a-w- C:\Program Files (x86)\Dropbox\Client\driver_amd64\dbx-dev.sys
      2017-08-10 17:03:40 FCC89FED34A5FD03B27A2B577A40ACF8 45640 ----a-w- C:\Windows\System32\drivers\dbx-stable.sys
      2017-08-10 17:03:40 FCC89FED34A5FD03B27A2B577A40ACF8 45640 ----a-w- C:\Windows\System32\drivers\dbx-canary.sys
      2017-08-10 17:03:40 728BE4B36BA453779AEC6459DDDB320B 45672 ----a-w- C:\Windows\System32\drivers\dbx-dev.sys
      2017-08-09 17:31:34 0C847B9BD2D1F1E97037F8C3DA6D5A1B 188352 ----a-w- C:\Windows\System32\drivers\MBAMChameleon.sys
      2017-08-09 17:31:26 19956478146DC7884812C24B74D7132E 101784 ----a-w- C:\Windows\System32\drivers\farflt.sys
      2017-08-09 17:31:25 6460084E1086CA8523C00C95F280F43B 84256 ----a-w- C:\Windows\System32\drivers\mwac.sys
      2017-08-09 17:31:16 149E252142950594695178971748D056 45472 ----a-w- C:\Windows\System32\drivers\mbam.sys
      2017-08-09 17:31:06 C3549BE8C1FE4ECBEE21DAD3378F6CD0 253856 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
      2017-08-09 17:30:48 5C9CA030C451CB3553DB9094C68EE6E9 77376 ----a-w- C:\Windows\System32\drivers\mbae64.sys
      2017-08-09 12:56:40 B0469617577F749FABBA53206D418F9B 3224064 ----a-w- C:\Windows\System32\win32k.sys
      2017-08-09 12:56:38 85C5468BC395819AE2A0C747334BA14C 363752 ----a-w- C:\Windows\System32\drivers\volmgrx.sys
      2017-08-09 12:56:38 4DD986720F7CB7A8A5D1226793097B9A 117248 ----a-w- C:\Windows\System32\drivers\tdx.sys
      2017-08-09 12:56:38 3963FEC1892368DD500E6ED1F5C286CE 370920 ----a-w- C:\Windows\System32\clfs.sys
      2017-08-09 12:56:37 EF5F0751E656C74E550E46B047FBEA57 154856 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
      2017-08-09 12:56:37 B6839909DDC1DDA53A5470DA3DE638A4 95464 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
      2017-08-09 12:56:31 0CAFC684CABD24D089A53467CAF5C7BB 159744 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
      2017-08-09 12:56:30 B9361F539BAAC1D362808157EAE0BA3B 291328 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
      2017-08-09 12:56:28 A77260AE4B9E7B6C11675FB907D27AE8 129536 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
      2017-08-09 12:56:27 F5206C19AAD6BA60360888E9A20396C7 62464 ----a-w- C:\Windows\System32\drivers\appid.sys

      ==== Startup Registry Enabled ======================

      [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

      [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]
      "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

      [HKEY_USERS\S-1-5-21-1078730986-171531119-3410817046-1000\Software\Microsoft\Windows\CurrentVersion\Run]
      "HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
      "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
      "EZBlocker"="C:\Users\jorge\Desktop\Spotify\Mod de Spotify Premium.exe"
      "Spotify Web Helper"="C:\Users\jorge\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart"
      "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

      [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
      "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

      [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]
      "mctadmin"="C:\Windows\System32\mctadmin.exe"

      [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]
      "mctadmin"="C:\Windows\System32\mctadmin.exe"

      [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce]
      "SPReview"="C:\Windows\System32\SPReview\SPReview.exe /sp:1 /errorfwlink:http://go.microsoft.com/fwlink/?LinkID=122915 /build:7601"

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"
      "HP Software Update"="c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"
      "NortonOnlineBackupReminder"="C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NOBuActivation.exe UNATTENDED"
      "HPUsageTrackingLEDM"="C:\Program Files (x86)\HP\HP UT LEDM\bin\hppusg.exe C:\Program Files (x86)\HP\HP UT LEDM\"
      "Dropbox"="C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /systemstartup"

      [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
      "HPAdvisorDock"="C:\Program Files (x86)\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"
      "iCloudServices"="C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe"
      "EZBlocker"="C:\Users\jorge\Desktop\Spotify\Mod de Spotify Premium.exe"
      "Spotify Web Helper"="C:\Users\jorge\AppData\Roaming\Spotify\SpotifyWebHelper.exe --autostart"
      "CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

      ==== Startup Registry Enabled x64 ======================

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "RtHDVCpl"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"
      "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe"
      "SmartMenu"="C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe /background"
      "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
      "SACMonitor"="C:\Program Files\SafeNet\Authentication\SAC\x64\SACMonitor.exe"
      "Malwarebytes TrayApp"="C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe"

      ==== Task Scheduler Jobs ======================

      C:\Windows\tasks\DropboxUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [21/03/2017 10:44 a.m.]
      C:\Windows\tasks\DropboxUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [21/03/2017 10:44 a.m.]
      C:\Windows\tasks\HPCeeScheduleForjorge.job --a------ [Undetermined Task]
      C:\Windows\tasks\PCDRScheduledMaintenance.job --a------ C:\Program Files\PC-Doctor for Windows\pcdrcui.exe [01/02/2010 08:02 p.m.]

      ==== Other Scheduled Tasks ======================

      "C:\Windows\SysNative\tasks\Adobe Acrobat Update Task" [C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe]
      "C:\Windows\SysNative\tasks\Apple Diagnostics" [C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe]
      "C:\Windows\SysNative\tasks\AutoKMS" [C:\Windows\AutoKMS\AutoKMS.exe]
      "C:\Windows\SysNative\tasks\AutoPico Daily Restart" ["C:\Program Files\KMSpico\AutoPico.exe"]
      "C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]
      "C:\Windows\SysNative\tasks\CLMLSvc" [c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Music\Kernel\CLML\CLMLSvc.exe]
      "C:\Windows\SysNative\tasks\DropboxUpdateTaskMachineCore" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe]
      "C:\Windows\SysNative\tasks\DropboxUpdateTaskMachineUA" [C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe]
      "C:\Windows\SysNative\tasks\DVDAgent" [c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe]
      "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
      "C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]
      "C:\Windows\SysNative\tasks\HPCeeScheduleForjorge" [C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe]
      "C:\Windows\SysNative\tasks\PCDRScheduledMaintenance" [C:\Program Files\PC-Doctor for Windows\pcdrcui.exe]
      "C:\Windows\SysNative\tasks\RecoveryCDWin7" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
      "C:\Windows\SysNative\tasks\Registration" ["C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"]
      "C:\Windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe]
      "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\HPSA Upgrade" [C:\ProgramData\Hewlett-Packard\HPSAUpgrade3\HpSAUpgrade.exe]
      "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Assistant\PC Tuneup" [C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe]
      "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\Ghost Resign Task" ["c:\program files (x86)\hewlett-packard\hp health check\activecheck\product_line\HPResignFileLoader.exe"]
      "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater" [C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe]
      "C:\Windows\SysNative\tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask" [C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe]
      "C:\Windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc]

      ==== Folders in C:\PROGRA~3 0-6 Months Old ======================

      2017-03-21 13:44:35 -------- d-----w- C:\PROGRA~3\Dropbox
      2017-05-02 13:50:49 -------- d-----w- C:\PROGRA~3\SWCUTemp
      2017-05-16 15:50:20 -------- d-----w- C:\PROGRA~3\Foxit ContentPlatform
      2017-05-16 15:54:44 -------- d-----w- C:\PROGRA~3\Foxit Software
      2017-06-19 13:15:34 -------- d-----w- C:\PROGRA~3\HP
      2017-08-09 17:30:38 -------- d-----w- C:\PROGRA~3\Malwarebytes

      ==== Firefox Extensions Registry ======================

      [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
      "quickprint@hp.com"="C:\Program Files (x86)\Hewlett-Packard\SmartPrint\QPExtension" [26/01/2011 02:27 p.m.]

      ==== Chromium Look ======================

      Google Chrome Version: 45.0.2454.101

      HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
      efaidnbmnnnibpcajpcglclefindmkaj - No path found[]

      Google Slides - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
      Google Docs - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake
      Google Drive - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf
      YouTube - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
      Google Search - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
      Adobe Acrobat - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj
      Google Sheets - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap
      Google Docs Offline - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi
      Whitelisted domains - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
      Chrome Web Store Payments - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
      Gmail - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
      Chrome Media Router - jorge\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm

      ==== Set IE to Default ======================

      Old Values:
      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
      "Start Page"="http://g.msn.com/HPALL/19"

      New Values:
      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
      "Start Page"="http://g.msn.com/HPALL/19"

      ==== All HKCU SearchScopes ======================

      HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
      "DefaultScope"="{3C07242A-49CB-453B-8001-94134FFA3066}"
      {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
      {3C07242A-49CB-453B-8001-94134FFA3066} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPDTDF&pc=HPDTDF&src=IE-SearchBox"

      ==== Reset Google Chrome ======================

      C:\Users\jorge\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
      C:\Users\jorge\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
      C:\Users\jorge\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
      C:\Users\jorge\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

      ==== shortcuts on Users Desktops ======================

      C:\Users\jorge\Desktop\BitTorrent.lnk - C:\Users\jorge\AppData\Roaming\BitTorrent\BitTorrent.exe
      C:\Users\jorge\Desktop\Dropbox.lnk - C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /home
      C:\Users\jorge\Desktop\Equipo.lnk -
      C:\Users\jorge\Desktop\Spotify.lnk - C:\Users\jorge\AppData\Roaming\Spotify\Spotify.exe

      ==== shortcuts on All Users Desktop ======================

      C:\Users\Public\Desktop\Acrobat Reader DC.lnk - C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
      C:\Users\Public\Desktop\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
      C:\Users\Public\Desktop\Fojas.lnk - C:\Windows\Installer\{FAAE1D61-7670-4AD9-B22C-ECEE36C2752C}\_7BE509437019509436980A.exe
      C:\Users\Public\Desktop\Foxit Reader.lnk - C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe
      C:\Users\Public\Desktop\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      C:\Users\Public\Desktop\HP Print and Scan Doctor.lnk - C:\Program Files (x86)\Hp\Diagnostics\PSDR\HPPSDr.exe
      C:\Users\Public\Desktop\HP Support Assistant.lnk - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe
      C:\Users\Public\Desktop\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe
      C:\Users\Public\Desktop\Malwarebytes.lnk - C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
      C:\Users\Public\Desktop\Shop for HP Supplies.lnk - C:\Program Files (x86)\Hp\HPSSUPPLY\hpqSSupply.exe

      ==== shortcuts in All Users Start Menu ======================

      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk - C:\Windows\Installer\{AC76BA86-7AD7-1034-7B44-AC0F074E4100}\SC_Reader.ico
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk - C:\Program Files\CCleaner\CCleaner64.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox\Dropbox.lnk - C:\Program Files (x86)\Dropbox\Client\Dropbox.exe /home
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP LaserJet Professional M1210 MFP Series\Configuración de FAX.lnk -
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP LaserJet Professional M1210 MFP Series\Desinstalar.lnk - C:\Program Files (x86)\hp\HP LaserJet M1210 MFP Series\Uninstall.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP LaserJet Professional M1210 MFP Series\Enviar FAX.lnk - C:\Program Files (x86)\hp\HP LaserJet M1210 MFP Series\SendFax.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP LaserJet Professional M1210 MFP Series\Escanear y enviar a.lnk - C:\Program Files (x86)\HP\HP LaserJet M1210 MFP Series\Scan To\hppscan0.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP LaserJet Professional M1210 MFP Series\Guía de HP LaserJet.lnk -
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP\HP LaserJet Professional M1210 MFP Series\HP ePrint.lnk - C:\Program Files (x86)\hp\HP LaserJet M1210 MFP Series\HP ePrint.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Malwarebytes.lnk - C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes\Uninstall Malwarebytes.lnk - C:\Program Files\Malwarebytes\Anti-Malware\unins000.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Enviar a OneNote 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\joticon.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Excel 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\xlicons.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\OneNote 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\joticon.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Outlook 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\outicon.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\PowerPoint 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\pptico.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Skype for Business 2015.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\lyncicon.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Word 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\wordicon.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Administrador de grabaciones de Lync.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\lyncicon.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Database Compare 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\dbcicons.exe
      C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013\Herramientas de Office 2013\Spreadsheet Compare 2013.lnk - C:\Windows\Installer\{91150000-0011-0000-1000-0000000FF1CE}\sscicons.exe

      ==== shortcuts in Quick Launch ======================

      C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
      C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
      C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
      C:\Users\Default User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit Reader.lnk - C:\Program Files (x86)\Foxit Software\Foxit Reader\FoxitReader.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Escanear y enviar a.lnk - C:\Program Files (x86)\HP\HP LaserJet M1210 MFP Series\Scan To\hppscan0.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\iTunes.lnk - C:\Program Files (x86)\iTunes\iTunes.exe
      C:\Users\jorge\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk - C:\Windows\explorer.exe

      ==== Reset IE Proxy ======================

      Value(s) before fix:
      "ProxyOverride"="*.local"
      "ProxyEnable"=dword:00000000

      Value(s) after fix:
      "ProxyEnable"=dword:00000000

      ==== Deleting Registry Keys ======================

      HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\B8A2D0D9B7E788D4D8054282E66D5ABE deleted successfully
      HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{9D0D2A8B-7E7B-4D88-8D50-24286ED6A5EB} deleted successfully
      HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\B8A2D0D9B7E788D4D8054282E66D5ABE deleted successfully

      ==== Empty IE Cache ======================

      C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
      C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
      C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
      C:\Users\jorge\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
      C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
      C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
      C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
      C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

      ==== Empty FireFox Cache ======================

      No FireFox Profiles found

      ==== Empty Chrome Cache ======================

      C:\Users\jorge\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

      ==== Empty All Flash Cache ======================

      Flash Cache Emptied Successfully

      ==== Empty All Java Cache ======================

      No Java Cache Found

      ==== C:\zoek_backup content ======================

      C:\zoek_backup (files=75 folders=3 87798994 bytes)

      ==== Empty Temp Folders ======================

      C:\Users\Default\AppData\Local\Temp emptied successfully
      C:\Users\Default User\AppData\Local\Temp emptied successfully
      C:\Users\jorge\AppData\Local\Temp will be emptied at reboot
      C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
      C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
      C:\Windows\Temp will be emptied at reboot

      ==== After Reboot ======================

      ==== Empty Temp Folders ======================

      C:\Windows\Temp successfully emptied
      C:\Users\jorge\AppData\Local\Temp successfully emptied

      ==== Empty Recycle Bin ======================

      C:\$RECYCLE.BIN successfully emptied

      ==== EOF on 15/08/2017 at 11:07:43,64 ======================

    5. #5
      Usuario Avatar de satanicgordo
      Registrado
      jul 2005
      Ubicación
      argentina
      Mensajes
      42

      Re: varios Chrome 32 abiertos en el proceso

      El problema parece persistir porque incio el administrador de tareas y todavia me aparecen varios chrome 32

      Aqui esta la foto del administrador
      https://ibb.co/iO9OPv

    6. #6
      Moderador
      Avatar de @MiguelRiaguel
      Registrado
      dic 2008
      Ubicación
      España
      Mensajes
      11.911

      Re: varios Chrome 32 abiertos en el proceso

      Nos faltaría el reporte de Malwarebytes. Por favor, en el próximo mensaje déjame ese reporte. Además, realiza lo siguiente:

      1º paso.- Descarga en el escritorio las siguientes herramientas, pero no las ejecutes todavía:



      2º paso.- Ahora vas a ejecutar Eset Smart Installer:

      Ejecutar y marcar, las casillas Eliminar las amenazas detectadas y analizar archivos.
      • Dar en Configuración adicional, marcar las casillas de Analizar en busca de aplicaciones potencialmente indeseables, Analizar en busca de aplicaciones potencialmente peligrosas y Activar la tecnoligía Anti-Stealth.
      • Dar en Iniciar para que empiece a descargar la base firmas de virus y posteriormente empiece a analizar tu sistema.
      • Acabado el scan dar en Finalizar. El reporte se puede localizar en C:\Archivos de programa\ESET\ESET Online Scanner\log. Me dejas este reporter en tu próxima contestación.


      3º paso.- A continuación vas a ejecutar Farbar Recovery Scan Tool (FRST) que lo debes de tener descargado en tu escritorio:

      • La guardas en el Escritorio >> Esto es muy importante..
      • Con todos los programas /ventanas cerrados, doble clic para ejecutar Frst.exe/Frst64.exe según el caso.
      • En la ventana del Disclaimer, presiona Yes.
      • En la nueva ventana que se abre, presiona el botón Scan y espera paciente a que concluya el análisis.
      • Se abrirán dos (2) archivos (Logs), Frst.txt y Addition.txt, estos estarán grabados en tu escritorio.
      • Para terminar abres los archivos Frst.txt y Addition.Txt copia y pega todo su contenido en tu próxima respuesta.
      • Utiliza dos mensajes si te dice que es muy largo.



      En tu próxima respuesta, me dejas los reportes de Eset Smart Installer y FRST, y me comentas cómo sigue funcionando el equipo.

      Saludos
      El problema de los virus es pasajero y durará un par de años / John McAfee - fundador de McAfee

      * Síguenos en nuestro Twitter y hazte nuestro amigo en Facebook.
      * Infórmate de las ultimas amenazas de la red desde: InfoSpyware Blog
      * No se resuelven dudas por Privados ni por E-mail, ya que para eso esta el foro.